|
|
/*++
Copyright (c) 1997-1999 Microsoft Corporation
Module Name:
feclient.cpp
Abstract:
This module implements stubs to call EFS Api
Author:
Robert Reichel (RobertRe) Robert Gu (RobertG)
Revision History:
--*/
//
// Turn off lean and mean so we get wincrypt.h and winefs.h included
//
#undef WIN32_LEAN_AND_MEAN
#include <nt.h>
#include <ntrtl.h>
#include <nturtl.h>
#include <windows.h>
#include <feclient.h>
#include <efsstruc.h>
#include <userenv.h>
//
// Constants used in export\import file
//
#define FILE_SIGNATURE L"ROBS"
#define STREAM_SIGNATURE L"NTFS"
#define DATA_SIGNATURE L"GURE"
#define DEFAULT_STREAM L"::$DATA"
#define DEF_STR_LEN 14
#define PROPERTY_SET L":$PROPERTY_SET"
#define INISECTIONNAME L"Encryption"
#define INIKEYNAME L"Disable"
#define INIFILENAME L"\\Desktop.ini"
#define TRUSTEDPEOPLE L"TrustedPeople"
#define PROPERTY_SET_LEN wcslen(PROPERTY_SET)
#if DBG
ULONG DebugLevel = 0;
#endif
LPSTR EfsOidlpstr = szOID_KP_EFS;
//
// External prototypes
//
extern "C" {DWORDEfsReadFileRawRPCClient( IN PFE_EXPORT_FUNC ExportCallback, IN PVOID CallbackContext, IN PVOID Context );
DWORDEfsWriteFileRawRPCClient( IN PFE_IMPORT_FUNC ImportCallback, IN PVOID CallbackContext, IN PVOID Context );
DWORDEfsAddUsersRPCClient( IN LPCWSTR lpFileName, IN PENCRYPTION_CERTIFICATE_LIST pEncryptionCertificates );
DWORDEfsRemoveUsersRPCClient( IN LPCWSTR lpFileName, IN PENCRYPTION_CERTIFICATE_HASH_LIST pHashes );
DWORDEfsQueryRecoveryAgentsRPCClient( IN LPCWSTR lpFileName, OUT PENCRYPTION_CERTIFICATE_HASH_LIST * pRecoveryAgents );
DWORDEfsQueryUsersRPCClient( IN LPCWSTR lpFileName, OUT PENCRYPTION_CERTIFICATE_HASH_LIST * pUsers );
DWORDEfsSetEncryptionKeyRPCClient( IN PENCRYPTION_CERTIFICATE pEncryptionCertificate );
DWORDEfsDuplicateEncryptionInfoRPCClient( IN LPCWSTR lpSrcFileName, IN LPCWSTR lpDestFileName, IN DWORD dwCreationDistribution, IN DWORD dwAttributes, IN PEFS_RPC_BLOB pRelativeSD, IN BOOL bInheritHandle );
DWORDEfsFileKeyInfoRPCClient( IN LPCWSTR lpFileName, IN DWORD InfoClass, OUT PEFS_RPC_BLOB *KeyInfo );
}
//
// Internal function prototypes
//
NTSTATUSGetStreamInformation( IN HANDLE SourceFile, OUT PFILE_STREAM_INFORMATION * StreamInfoBase, PULONG StreamInfoSize );
DWORDOpenFileStreams( IN HANDLE hSourceFile, IN ULONG ShareMode, IN PFILE_STREAM_INFORMATION StreamInfoBase, IN ULONG FileAccess, IN ULONG CreateDisposition, IN ULONG CreateOption, OUT PUNICODE_STRING * StreamNames, OUT PHANDLE * StreamHandles, OUT PULONG StreamCount );
VOIDCleanupOpenFileStreams( IN PHANDLE Handles OPTIONAL, IN PUNICODE_STRING StreamNames OPTIONAL, IN PFILE_STREAM_INFORMATION StreamInfoBase OPTIONAL, IN HANDLE HSourceFile OPTIONAL, IN ULONG StreamCount );
ULONGCheckSignature( IN void *Signature );
//
// Exported function prototypes
//
DWORDEfsClientEncryptFile( IN LPCWSTR FileName );
DWORDEfsClientDecryptFile( IN LPCWSTR FileName, IN DWORD Recovery );
BOOLEfsClientFileEncryptionStatus( IN LPCWSTR FileName, OUT LPDWORD lpStatus );
DWORDEfsClientOpenFileRaw( IN LPCWSTR lpFileName, IN ULONG Flags, OUT PVOID * Context );
DWORDEfsClientReadFileRaw( IN PFE_EXPORT_FUNC ExportCallback, IN PVOID CallbackContext, IN PVOID Context );
DWORDEfsClientWriteFileRaw( IN PFE_IMPORT_FUNC ImportCallback, IN PVOID CallbackContext, IN PVOID Context );
VOIDEfsClientCloseFileRaw( IN PVOID Context );
DWORDEfsClientAddUsers( IN LPCTSTR lpFileName, IN PENCRYPTION_CERTIFICATE_LIST pEncryptionCertificates );
DWORDEfsClientRemoveUsers( IN LPCTSTR lpFileName, IN PENCRYPTION_CERTIFICATE_HASH_LIST pHashes );
DWORDEfsClientQueryRecoveryAgents( IN LPCTSTR lpFileName, OUT PENCRYPTION_CERTIFICATE_HASH_LIST * pRecoveryAgents );
DWORDEfsClientQueryUsers( IN LPCTSTR lpFileName, OUT PENCRYPTION_CERTIFICATE_HASH_LIST * pUsers );
DWORDEfsClientSetEncryptionKey( IN PENCRYPTION_CERTIFICATE pEncryptionCertificate );
VOIDEfsClientFreeHashList( IN PENCRYPTION_CERTIFICATE_HASH_LIST pHashList );
DWORDEfsClientDuplicateEncryptionInfo( IN LPCWSTR lpSrcFile, IN LPCWSTR lpDestFile, IN DWORD dwCreationDistribution, IN DWORD dwAttributes, IN LPSECURITY_ATTRIBUTES lpSecurityAttributes );
BOOLEfsClientEncryptionDisable( IN LPCWSTR DirPath, IN BOOL Disable );
DWORDEfsClientFileKeyInfo( IN LPCWSTR lpFileName, IN DWORD InfoClass, OUT PEFS_RPC_BLOB *KeyInfo );
VOIDEfsClientFreeKeyInfo( IN PEFS_RPC_BLOB pKeyInfo );
FE_CLIENT_DISPATCH_TABLE DispatchTable = { EfsClientEncryptFile, EfsClientDecryptFile, EfsClientFileEncryptionStatus, EfsClientOpenFileRaw, EfsClientReadFileRaw, EfsClientWriteFileRaw, EfsClientCloseFileRaw, EfsClientAddUsers, EfsClientRemoveUsers, EfsClientQueryRecoveryAgents, EfsClientQueryUsers, EfsClientSetEncryptionKey, EfsClientFreeHashList, EfsClientDuplicateEncryptionInfo, EfsClientEncryptionDisable, EfsClientFileKeyInfo, EfsClientFreeKeyInfo };
FE_CLIENT_INFO ClientInfo = { FE_REVISION_1_0, &DispatchTable };
//
// Internal function prototypes
//
BOOLTranslateFileName( IN LPCWSTR FileName, OUT PUNICODE_STRING FullFileNameU );
BOOLRemoteFile( IN LPCWSTR FileName );
extern "C"BOOLEfsClientInit( IN PVOID hmod, IN ULONG Reason, IN PCONTEXT Context ){ return( TRUE );}
extern "C"BOOLFeClientInitialize( IN DWORD dwFeRevision, OUT LPFE_CLIENT_INFO *lpFeInfo )
/*++
Routine Description:
description-of-function.
Arguments:
dwFeRevision - Is the revision of the current FEAPI interface.
lpFeInfo - On successful return, must contain a pointer to a structure describing the FE Client Interface. Once returned, the FE Client must assume that the caller will continue to reference this table until an unload call has been made. Any changes to this information, or deallocation of the memory containing the information may result in system corruptions.
Return Value:
TRUE - Indicates the Client DLL successfully initialized.
FALSE - Indicates the client DLL has not loaded. More information may be obtained by calling GetLastError().
--*/
{
*lpFeInfo = &ClientInfo;
return( TRUE );}
BOOLTranslateFileName( IN LPCWSTR FileName, OUT PUNICODE_STRING FullFileNameU )
/*++
Routine Description:
This routine takes the filename passed by the user and converts it to a fully qualified pathname in the passed Unicode string.
Arguments:
FileName - Supplies the user-supplied file name.
FullFileNameU - Returns the fully qualified pathname of the passed file. The buffer in this string is allocated out of heap memory and must be freed by the caller.
Return Value:
TRUE on success, FALSE otherwise.
--*/
//
// Note: need to free the buffer of the returned string
//
{
UNICODE_STRING FileNameU; BOOLEAN TranslationStatus; LPWSTR SrcFileName = (LPWSTR)FileName; WCHAR Sep = L'\\'; int SrcLen =wcslen(FileName);
if (0 == SrcLen) { SetLastError(ERROR_INVALID_PARAMETER); return FALSE; } FullFileNameU->Buffer = (PWSTR)RtlAllocateHeap( RtlProcessHeap(), 0, MAX_PATH * sizeof( WCHAR )); if (!FullFileNameU->Buffer) { SetLastError(ERROR_OUTOFMEMORY); return FALSE; }
FullFileNameU->MaximumLength = MAX_PATH * sizeof( WCHAR );
FullFileNameU->Length = (USHORT)RtlGetFullPathName_U( SrcFileName, FullFileNameU->MaximumLength, FullFileNameU->Buffer, NULL );
//
// The return value is supposed to be the length of the filename, without counting
// the trailing NULL character. MAX_PATH is supposed be long enough to contain
// the length of the file name and the trailing NULL, so what we get back had
// better be less than MAX_PATH wchars.
//
if ( FullFileNameU->Length >= FullFileNameU->MaximumLength ){
RtlFreeHeap( RtlProcessHeap(), 0, FullFileNameU->Buffer ); FullFileNameU->Buffer = (PWSTR)RtlAllocateHeap( RtlProcessHeap(), 0, FullFileNameU->Length + sizeof(WCHAR));
if (FullFileNameU->Buffer == NULL) { return( FALSE ); } FullFileNameU->MaximumLength = FullFileNameU->Length + sizeof(WCHAR);
FullFileNameU->Length = (USHORT)RtlGetFullPathName_U( SrcFileName, FullFileNameU->MaximumLength, FullFileNameU->Buffer, NULL ); }
if (FullFileNameU->Length == 0) { //
// We failed for some reason
//
RtlFreeHeap( RtlProcessHeap(), 0, FullFileNameU->Buffer ); return( FALSE ); } return( TRUE );
/******************
if (0 == SrcLen) { SetLastError(ERROR_INVALID_PARAMETER); return FALSE; } FullFileNameU->Buffer = (PWSTR)RtlAllocateHeap( RtlProcessHeap(), 0, MAX_PATH * sizeof( WCHAR ));
if (FullFileNameU->Buffer == NULL) { SetLastError(ERROR_OUTOFMEMORY); return( FALSE ); }
if ((SrcLen >= 5) && (FileName[0] == Sep) && (FileName[1] == Sep) && (FileName[2] == L'?') && (FileName[3] == Sep)){
if (FileName[5] == L':') { SrcFileName = (LPWSTR)&FileName[4]; } else if ((SrcLen >= 7) && (FileName[4] == L'U') && (FileName[5] == L'N') && (FileName[6] == L'C') && (FileName[7] == Sep)){ SrcFileName = (LPWSTR)&FileName[6]; SrcFileName[0] = Sep; }
} else if ((SrcLen >= 6) && (FileName[0] == Sep) && (FileName[1] == L'?') && (FileName[2] == FileName[1]) && (FileName[3] == FileName[0])) {
//
// /??/... format
//
SrcFileName = (LPWSTR)&FileName[4];
}
if ( SrcFileName != (LPWSTR)FileName ){
//
// User passed in a FULL path with \\?\ format.
// RtlGetFullPathName_U may fail if we pass in a long file name without \\?\ //
FullFileNameU->Length = wcslen(SrcFileName)*sizeof( WCHAR ); if ( FullFileNameU->Length >= MAX_PATH * sizeof( WCHAR ) ){ RtlFreeHeap( RtlProcessHeap(), 0, FullFileNameU->Buffer ); FullFileNameU->Buffer = (PWSTR)RtlAllocateHeap( RtlProcessHeap(), 0, FullFileNameU->Length + sizeof(WCHAR));
if (FullFileNameU->Buffer == NULL) { if ((SrcLen >= 7) && (SrcFileName == &FileName[6])) { SrcFileName[0] = L'C'; } return( FALSE ); } FullFileNameU->MaximumLength = FullFileNameU->Length + sizeof(WCHAR); } RtlCopyMemory(FullFileNameU->Buffer, SrcFileName, FullFileNameU->Length + sizeof(WCHAR));
} else {
FullFileNameU->MaximumLength = MAX_PATH * sizeof( WCHAR );
FullFileNameU->Length = (USHORT)RtlGetFullPathName_U( SrcFileName, FullFileNameU->MaximumLength, FullFileNameU->Buffer, NULL );
//
// The return value is supposed to be the length of the filename, without counting
// the trailing NULL character. MAX_PATH is supposed be long enough to contain
// the length of the file name and the trailing NULL, so what we get back had
// better be less than MAX_PATH wchars.
//
if ( FullFileNameU->Length >= FullFileNameU->MaximumLength ){
RtlFreeHeap( RtlProcessHeap(), 0, FullFileNameU->Buffer ); FullFileNameU->Buffer = (PWSTR)RtlAllocateHeap( RtlProcessHeap(), 0, FullFileNameU->Length + sizeof(WCHAR));
if (FullFileNameU->Buffer == NULL) { if (SrcFileName == &FileName[6]) { SrcFileName[0] = L'C'; } return( FALSE ); } FullFileNameU->MaximumLength = FullFileNameU->Length + sizeof(WCHAR);
FullFileNameU->Length = (USHORT)RtlGetFullPathName_U( SrcFileName, FullFileNameU->MaximumLength, FullFileNameU->Buffer, NULL ); } }
if ((SrcLen >= 7) && (SrcFileName == &FileName[6])) { SrcFileName[0] = L'C'; }
if (FullFileNameU->Length == 0) { //
// We failed for some reason
//
RtlFreeHeap( RtlProcessHeap(), 0, FullFileNameU->Buffer ); return( FALSE ); }
return( TRUE ); *******************/}
BOOLWriteEfsIni( IN LPCWSTR SectionName, IN LPCWSTR KeyName, IN LPCWSTR WriteValue, IN LPCWSTR IniFileName )/*++
Routine Description:
This routine writes to the ini file. A wrap of WritePrivateProfileString Arguments:
SectionName - Section name (Encryption).
KeyName - Key name (Disable). WriteValue - The value to be write (1). IniFileName - The path for ini file (dir\desktop.ini).
Return Value:
TRUE on success
--*/{ BOOL bRet;
bRet = WritePrivateProfileString( SectionName, KeyName, WriteValue, IniFileName );
//
// If SetFileAttributes fails, life should go on.
//
SetFileAttributes(IniFileName, FILE_ATTRIBUTE_SYSTEM | FILE_ATTRIBUTE_HIDDEN );
return bRet;}
BOOLEfsClientEncryptionDisable( IN LPCWSTR DirPath, IN BOOL Disable )/*++
Routine Description:
This routine disable and enable EFS in the directory DirPath. Arguments:
DirPath - Directory path.
Disable - TRUE to disable
Return Value:
TRUE for SUCCESS
--*/{ LPWSTR IniFilePath; WCHAR WriteValue[2]; BOOL bRet = FALSE;
if (DirPath) {
IniFilePath = (LPWSTR)RtlAllocateHeap( RtlProcessHeap(), 0, (wcslen(DirPath)+1+wcslen(INIFILENAME))*sizeof(WCHAR) ); if (IniFilePath) { if (Disable) { wcscpy(WriteValue, L"1"); } else { wcscpy(WriteValue, L"0"); } wcscpy(IniFilePath, DirPath); wcscat(IniFilePath, INIFILENAME); bRet = WriteEfsIni(INISECTIONNAME, INIKEYNAME, WriteValue, IniFilePath); RtlFreeHeap( RtlProcessHeap(), 0, IniFilePath ); }
} else { SetLastError(ERROR_INVALID_PARAMETER); }
return bRet;}
BOOLEfsDisabled( IN LPCWSTR SectionName, IN LPCWSTR KeyName, IN LPCWSTR IniFileName )/*++
Routine Description:
This routine checks if the encryption has been turned off for the ini file. Arguments:
SectionName - Section name (Encryption).
KeyName - Key name (Disable). IniFileName - The path for ini file (dir\desktop.ini).
Return Value:
TRUE for disabled
--*/{ DWORD ValueLength; WCHAR ResultString[4];
memset( ResultString, 0, sizeof(ResultString) );
ValueLength = GetPrivateProfileString( SectionName, KeyName, L"0", ResultString, sizeof(ResultString)/sizeof(WCHAR), IniFileName );
//
// If GetPrivateProfileString failed, EFS will be enabled
//
return (!wcscmp(L"1", ResultString));}
BOOLDirEfsDisabled( IN LPCWSTR DirName )/*++
Routine Description:
This routine checks if the encryption has been turned off for the dir. Arguments:
SectionName - Section name (Encryption).
KeyName - Key name (Disable). IniFileName - The path for ini file (dir\desktop.ini).
Return Value:
TRUE for disabled
--*/{ LPWSTR FileName; DWORD FileLength = (wcslen(INIFILENAME)+wcslen(DirName)+1)*sizeof (WCHAR); BOOL bRet = FALSE;
FileName = (PWSTR)RtlAllocateHeap( RtlProcessHeap(), 0, FileLength ); if (FileName) { wcscpy( FileName, DirName ); wcscat( FileName, INIFILENAME ); bRet = EfsDisabled( INISECTIONNAME, INIKEYNAME, FileName ); RtlFreeHeap( RtlProcessHeap(), 0, FileName ); }
return bRet;}
BOOLRemoteFile( IN LPCWSTR FileName )/*++
Routine Description:
This routine checks if the file is a local file. If a UNC name is passed in, it assumes a remote file. A loopback operation will occur.
Arguments:
FileName - Supplies the user-supplied file name.
Return Value:
TRUE for remote file.
--*/
{
if ( FileName[1] == L':' ){
WCHAR DriveLetter[3]; DWORD BufferLength = 3; DWORD RetCode = ERROR_SUCCESS;
DriveLetter[0] = FileName[0]; DriveLetter[1] = FileName[1]; DriveLetter[2] = 0;
RetCode = WNetGetConnectionW( DriveLetter, DriveLetter, &BufferLength );
if (RetCode == ERROR_NOT_CONNECTED) { return FALSE; } else { return TRUE; }
} else { return TRUE; }
}
DWORDEfsClientEncryptFile( IN LPCWSTR FileName ){ DWORD rc; BOOL Result;
UNICODE_STRING FullFileNameU;
if (NULL == FileName) { return ERROR_INVALID_PARAMETER; } Result = TranslateFileName( FileName, &FullFileNameU );
if (Result) {
//
// Call the server
//
rc = EfsEncryptFileRPCClient( &FullFileNameU ); RtlFreeHeap(RtlProcessHeap(), 0, FullFileNameU.Buffer);
} else { rc = GetLastError(); }
return( rc );}
DWORDEfsClientDecryptFile( IN LPCWSTR FileName, IN DWORD dwRecovery ){ DWORD rc; BOOL Result;
UNICODE_STRING FullFileNameU;
if (NULL == FileName) { return ERROR_INVALID_PARAMETER; } Result = TranslateFileName( FileName, &FullFileNameU );
if (Result) {
//
// Call the server
//
//rc = EfsDecryptFileAPI( &FullFileNameU, dwRecovery );
rc = EfsDecryptFileRPCClient( &FullFileNameU, dwRecovery ); RtlFreeHeap(RtlProcessHeap(), 0, FullFileNameU.Buffer);
} else { rc = GetLastError(); }
return( rc );}
BOOLEfsClientFileEncryptionStatus( IN LPCWSTR FileName, OUT LPDWORD lpStatus )/*++
Routine Description:
This routine checks if a file is encryptable or not.
We do not test the NTFS Volume 5 for the reason of performance. This means we might return a file encryptable (on FAT at etc.), but actually it could not be encrypted. This should be OK. This is a best effort API. We have the same problem with network file. Any way, a file could fail to be encrypted for many reasons, delegation, disk space and etc. We disable the encryption from %windir% down. We might change these features later.
Arguments:
FileName - The file to be checked.
lpStatus - The encryption status of the file. Error code if the return value is FALSE.
Return Value:
TRUE on success, FALSE otherwise.
--*/
{ BOOL Result; DWORD FileAttributes;
UNICODE_STRING FullFileNameU;
if ((NULL == FileName) || ( NULL == lpStatus)) { SetLastError(ERROR_INVALID_PARAMETER); return FALSE; }
//
// GetFileAttributes should use the name before TanslateFileName
// in case the passed in name is longer than MAX_PATH and using the
// format \\?\ //
FileAttributes = GetFileAttributes( FileName );
if (FileAttributes == -1){ *lpStatus = GetLastError(); return FALSE; }
Result = TranslateFileName( FileName, &FullFileNameU );
ASSERT(FullFileNameU.Buffer[FullFileNameU.Length / 2] == 0);
if (Result) {
if ( (FileAttributes & FILE_ATTRIBUTE_ENCRYPTED) || (FileAttributes & FILE_ATTRIBUTE_SYSTEM) ) {
//
// File not encryptable. Either it is encypted or a system file.
//
if ( FileAttributes & FILE_ATTRIBUTE_ENCRYPTED ){
*lpStatus = FILE_IS_ENCRYPTED;
} else {
*lpStatus = FILE_SYSTEM_ATTR ;
}
} else {
LPWSTR TmpBuffer; LPWSTR FullPathName; UINT TmpBuffLen; UINT FullPathLen; UINT PathLength; BOOL GotRoot; BOOL EfsDisabled = FALSE;
//
// Check if it is the root.
//
if ( FullFileNameU.Length >= MAX_PATH * sizeof(WCHAR)){
//
// We need to put back the \\?\ or \\?\UNC\ to use the
// Win 32 API
//
FullPathLen = FullFileNameU.Length + 7 * sizeof(WCHAR); TmpBuffLen = FullPathLen; FullPathName = (LPWSTR)RtlAllocateHeap( RtlProcessHeap(), 0, FullPathLen ); TmpBuffer = (LPWSTR)RtlAllocateHeap( RtlProcessHeap(), 0, TmpBuffLen );
if ((FullPathName == NULL) || (TmpBuffer == NULL)){ RtlFreeHeap(RtlProcessHeap(), 0, FullFileNameU.Buffer); if (FullPathName){ RtlFreeHeap(RtlProcessHeap(), 0, FullPathName); } if (TmpBuffer){ RtlFreeHeap(RtlProcessHeap(), 0, TmpBuffer); } *lpStatus = ERROR_OUTOFMEMORY; return FALSE; }
if ( FullFileNameU.Buffer[0] == L'\\' ){
//
// Put back the \\?\UNC\ //
wcscpy(FullPathName, L"\\\\?\\UNC"); wcscat(FullPathName, &(FullFileNameU.Buffer[1])); FullPathLen = FullFileNameU.Length + 6 * sizeof(WCHAR);
} else {
//
// Put back the \\?\ //
wcscpy(FullPathName, L"\\\\?\\"); wcscat(FullPathName, FullFileNameU.Buffer); FullPathLen = FullFileNameU.Length + 4 * sizeof(WCHAR); }
} else { TmpBuffLen = MAX_PATH * sizeof(WCHAR); TmpBuffer = (LPWSTR)RtlAllocateHeap( RtlProcessHeap(), 0, TmpBuffLen ); if (TmpBuffer == NULL){ RtlFreeHeap(RtlProcessHeap(), 0, FullFileNameU.Buffer); *lpStatus = ERROR_OUTOFMEMORY; return FALSE; }
FullPathName = FullFileNameU.Buffer; FullPathLen = FullFileNameU.Length; }
//
// Check desktop.ini here
//
wcscpy(TmpBuffer, FullFileNameU.Buffer); if (!(FileAttributes & FILE_ATTRIBUTE_DIRECTORY)) {
//
// This is a file. Get the DIR path
//
int ii;
ii = wcslen(TmpBuffer) - 1; while ((ii >= 0) && (TmpBuffer[ii] != L'\\')) { ii--; } if (ii>=0) { TmpBuffer[ii] = 0; }
}
EfsDisabled = DirEfsDisabled( TmpBuffer );
if (EfsDisabled) { *lpStatus = FILE_DIR_DISALLOWED; } else if (!(FileAttributes & FILE_ATTRIBUTE_DIRECTORY) && (FileAttributes & FILE_ATTRIBUTE_READONLY)){
//
// Read only file
//
*lpStatus = FILE_READ_ONLY; } else { GotRoot = GetVolumePathName( FullPathName, TmpBuffer, TmpBuffLen ); if ( GotRoot ){ DWORD RootLength = wcslen(TmpBuffer) - 1; TmpBuffer[RootLength] = NULL; if ( (FullPathLen == RootLength * sizeof (WCHAR)) && !wcscmp(TmpBuffer, FullPathName)){ //
// It is the root
//
*lpStatus = FILE_ROOT_DIR; } else { //
// Check if it is the Windows\system32 directories
//
PathLength = GetSystemWindowsDirectory( TmpBuffer, TmpBuffLen ); //PathLength = GetWindowsDirectory( TmpBuffer, TmpBuffLen );
//PathLength = GetSystemDirectory( TmpBuffer, TmpBuffLen );
ASSERT(PathLength <= TmpBuffLen); if ( PathLength > TmpBuffLen ) { //
// This is unlikely. Not sure who will ever have the length
// of %windir%\system32 longer than MAXPATH in the real world.
// Even this happen, user could still encrypt the file. FILE_UNKNOWN
// does not mean file could\or couldn't be encrypted.
//
*lpStatus = FILE_UNKNOWN ; } else { if ( ( FullFileNameU.Length < PathLength * sizeof (WCHAR) ) || ( ( FullFileNameU.Buffer[PathLength] ) && ( FullFileNameU.Buffer[PathLength] != L'\\') )){ //
// Check if a remote file
//
if ( RemoteFile( FullFileNameU.Buffer ) ){ *lpStatus = FILE_UNKNOWN; } else { *lpStatus = FILE_ENCRYPTABLE; } } else { if ( _wcsnicmp(TmpBuffer, FullFileNameU.Buffer, PathLength)){ //
// Not under %SystemRoot%
//
if ( RemoteFile( FullFileNameU.Buffer ) ){ *lpStatus = FILE_UNKNOWN; } else { *lpStatus = FILE_ENCRYPTABLE; } } else { //
// In windows root directory. WINNT
//
BOOL bRet; DWORD allowPathLen; //
// Check for allow lists
//
allowPathLen = (DWORD) TmpBuffLen; bRet = GetProfilesDirectory(TmpBuffer, &allowPathLen); if (!bRet){ RtlFreeHeap(RtlProcessHeap(), 0, TmpBuffer); TmpBuffer = (LPWSTR)RtlAllocateHeap( RtlProcessHeap(), 0, allowPathLen ); if (TmpBuffer){ bRet = GetProfilesDirectory(TmpBuffer, &allowPathLen); } else { *lpStatus = ERROR_OUTOFMEMORY; Result = FALSE; } } if (bRet){ //
// Check for Profiles directory
//
if (!_wcsnicmp(TmpBuffer, FullFileNameU.Buffer, allowPathLen - 1)){ *lpStatus = FILE_ENCRYPTABLE; } else { //
// Under %windir% but not profiles
//
*lpStatus = FILE_SYSTEM_DIR; } } else { if ( *lpStatus != ERROR_OUTOFMEMORY){ //
// This should not happen, unless a bug in GetProfilesDirectoryEx()
//
ASSERT(FALSE); *lpStatus = FILE_UNKNOWN; } } } } } } } else { //
// Cannot get the root. The reason might very well be out of memory.
// Return FILE_UNKNOWN and let other codes dealing with the memory
// problem.
//
*lpStatus = FILE_UNKNOWN ; } }
if ((FullPathName != FullFileNameU.Buffer) && FullPathName){ RtlFreeHeap(RtlProcessHeap(), 0, FullPathName); }
if (TmpBuffer){ RtlFreeHeap(RtlProcessHeap(), 0, TmpBuffer); }
}
RtlFreeHeap(RtlProcessHeap(), 0, FullFileNameU.Buffer);
} else { *lpStatus = GetLastError(); }
return Result;}
DWORDEfsClientOpenFileRaw( IN LPCWSTR FileName, IN ULONG Flags, OUT PVOID * Context )
/*++
Routine Description:
This routine is used to open an encrypted file. It opens the file and prepares the necessary context to be used in ReadRaw data and WriteRaw data.
Arguments:
FileName -- File name of the file to be exported
Flags -- Indicating if open for export or import; for directory or file.
Context - Export context to be used by READ operation later. Caller should pass this back in ReadRaw().
Return Value:
Result of the operation.
--*/
{ DWORD rc; BOOL Result; UNICODE_STRING FullFileNameU;
if ((NULL == FileName) || ( NULL == Context)) { return ERROR_INVALID_PARAMETER; }
Result = TranslateFileName( FileName, &FullFileNameU );
if (Result) {
rc = (EfsOpenFileRawRPCClient( FullFileNameU.Buffer, Flags, Context ) );
RtlFreeHeap(RtlProcessHeap(), 0, FullFileNameU.Buffer);
} else { rc = GetLastError(); }
return rc;
}
DWORDEfsClientReadFileRaw( IN PFE_EXPORT_FUNC ExportCallback, IN PVOID CallbackContext, IN PVOID Context )/*++
Routine Description:
This routine is used to read encrypted file's raw data. It uses NTFS FSCTL to get the data.
Arguments:
ExportCallback -- Caller supplied callback function to process the raw data.
CallbackContext -- Caller's context passed back in ExportCallback.
Context - Export context created in the CreateRaw.
Return Value:
Result of the operation.
--*/
{ return ( EfsReadFileRawRPCClient( ExportCallback, CallbackContext, Context ));}
DWORDEfsClientWriteFileRaw( IN PFE_IMPORT_FUNC ImportCallback, IN PVOID CallbackContext, IN PVOID Context )
/*++
Routine Description:
This routine is used to write encrypted file's raw data. It uses NTFS FSCTL to write the data.
Arguments:
ImportCallback -- Caller supplied callback function to provide the raw data.
CallbackContext -- Caller's context passed back in ImportCallback.
Context - Import context created in the CreateRaw.
Return Value:
Result of the operation.
--*/
{
return ( EfsWriteFileRawRPCClient( ImportCallback, CallbackContext, Context ));}
VOIDEfsClientCloseFileRaw( IN PVOID Context )/*++
Routine Description:
This routine frees the resources allocated by the CreateRaw
Arguments:
Context - Created by the CreateRaw.
Return Value:
NO.
--*/{ if ( !Context ){ return; }
EfsCloseFileRawRPCClient( Context );}
//
// Beta 2 API
//
DWORDEfsClientAddUsers( IN LPCWSTR lpFileName, IN PENCRYPTION_CERTIFICATE_LIST pEncryptionCertificates )/*++
Routine Description:
Calls client stub for AddUsersToFile EFS API.
Arguments:
lpFileName - Supplies the name of the file to be modified.
nUsers - Supplies the number of entries in teh pEncryptionCertificates array
pEncryptionCertificates - Supplies an array of pointers to PENCRYPTION_CERTIFICATE structures. Length of array is given in nUsers parameter.
Return Value:
--*/{ DWORD rc = ERROR_SUCCESS; UNICODE_STRING FullFileNameU; DWORD ii = 0; CERT_CHAIN_PARA CertChainPara;
if ((NULL == lpFileName) || (NULL == pEncryptionCertificates)) { return ERROR_INVALID_PARAMETER; }
//
// Let's check to see if the certs are good or not.
//
CertChainPara.cbSize = sizeof(CERT_CHAIN_PARA); CertChainPara.RequestedUsage.dwType = USAGE_MATCH_TYPE_AND; CertChainPara.RequestedUsage.Usage.cUsageIdentifier = 1; CertChainPara.RequestedUsage.Usage.rgpszUsageIdentifier=&EfsOidlpstr;
while ((ERROR_SUCCESS == rc) && (ii < pEncryptionCertificates->nUsers)) {
PCCERT_CONTEXT pCertContext = CertCreateCertificateContext( X509_ASN_ENCODING, pEncryptionCertificates->pUsers[ii]->pCertBlob->pbData, pEncryptionCertificates->pUsers[ii]->pCertBlob->cbData ); if (pCertContext != NULL) {
PCCERT_CHAIN_CONTEXT pChainContext;
//
// Do the chain validation
//
if (CertGetCertificateChain ( HCCE_CURRENT_USER, pCertContext, NULL, NULL, &CertChainPara, 0, NULL, &pChainContext )) { //
// Let's check the chain
//
PCERT_SIMPLE_CHAIN pChain = pChainContext->rgpChain[ pChainContext->cChain - 1 ]; PCERT_CHAIN_ELEMENT pElement = pChain->rgpElement[ pChain->cElement - 1 ]; BOOL bSelfSigned = pElement->TrustStatus.dwInfoStatus & CERT_TRUST_IS_SELF_SIGNED; DWORD dwErrorStatus = pChainContext->TrustStatus.dwErrorStatus;
if (dwErrorStatus) { if ((dwErrorStatus == CERT_TRUST_IS_UNTRUSTED_ROOT) && bSelfSigned ){
//
// Self signed. Check if it is in the my trusted store
//
HCERTSTORE trustedStore; PCCERT_CONTEXT pCert=NULL;
trustedStore = CertOpenStore( CERT_STORE_PROV_SYSTEM_W, 0, // dwEncodingType
0, // hCryptProv,
CERT_SYSTEM_STORE_CURRENT_USER, TRUSTEDPEOPLE );
if (trustedStore) {
pCert = CertFindCertificateInStore( trustedStore, X509_ASN_ENCODING | PKCS_7_ASN_ENCODING, 0, CERT_FIND_EXISTING, pCertContext, pCert ); if (pCert) { //
// We found it.
//
CertFreeCertificateContext(pCert);
} else {
//
// Not trusted self-signed cert
//
rc = CERT_E_UNTRUSTEDROOT;
}
CertCloseStore( trustedStore, 0 );
} else { rc = GetLastError(); }
} else {
//
// Other chain build error
// Let's get the error code of the chain building.
//
CERT_CHAIN_POLICY_PARA PolicyPara; CERT_CHAIN_POLICY_STATUS PolicyStatus;
RtlZeroMemory(&PolicyPara, sizeof(CERT_CHAIN_POLICY_PARA)); RtlZeroMemory(&PolicyStatus, sizeof(CERT_CHAIN_POLICY_STATUS));
PolicyPara.cbSize = sizeof(CERT_CHAIN_POLICY_PARA); PolicyStatus.cbSize = sizeof(CERT_CHAIN_POLICY_STATUS);
if (!CertVerifyCertificateChainPolicy( CERT_CHAIN_POLICY_BASE, pChainContext, &PolicyPara, &PolicyStatus )) {
rc = PolicyStatus.dwError; }
} }
CertFreeCertificateChain( pChainContext );
} else {
rc = GetLastError();
}
CertFreeCertificateContext(pCertContext);
} else {
rc = GetLastError();
}
ii++; }
if (ERROR_SUCCESS == rc) {
if (TranslateFileName( lpFileName, &FullFileNameU )) { rc = EfsAddUsersRPCClient( FullFileNameU.Buffer, pEncryptionCertificates ); RtlFreeHeap(RtlProcessHeap(), 0, FullFileNameU.Buffer); } else { rc = GetLastError(); }
}
return rc;}
DWORDEfsClientRemoveUsers( IN LPCWSTR lpFileName, IN PENCRYPTION_CERTIFICATE_HASH_LIST pHashes )/*++
Routine Description:
Calls client stub for RemoveUsersFromFile EFS API
Arguments:
lpFileName - Supplies the name of the file to be modified.
pHashes - Supplies a structure containing a list of PENCRYPTION_CERTIFICATE_HASH structures, each of which represents a user to remove from the specified file.
Return Value:
--*/{ DWORD rc; UNICODE_STRING FullFileNameU;
if ((NULL == lpFileName) || (NULL == pHashes) || (pHashes->pUsers == NULL)) { return ERROR_INVALID_PARAMETER; } if (TranslateFileName( lpFileName, &FullFileNameU )) {
rc = EfsRemoveUsersRPCClient( FullFileNameU.Buffer, pHashes );
RtlFreeHeap(RtlProcessHeap(), 0, FullFileNameU.Buffer);
} else {
rc = GetLastError(); }
return rc;}
DWORDEfsClientQueryRecoveryAgents( IN LPCWSTR lpFileName, OUT PENCRYPTION_CERTIFICATE_HASH_LIST * pRecoveryAgents )/*++
Routine Description:
Calls client stub for QueryRecoveryAgents EFS API
Arguments:
lpFileName - Supplies the name of the file to be modified.
pRecoveryAgents - Returns a pointer to a structure containing a list of PENCRYPTION_CERTIFICATE_HASH structures, each of which represents a recovery agent on the file.
Return Value:
--*/{ DWORD rc; UNICODE_STRING FullFileNameU;
if ((NULL == lpFileName) || (NULL == pRecoveryAgents)) { return ERROR_INVALID_PARAMETER; } if (TranslateFileName( lpFileName, &FullFileNameU )) {
rc = EfsQueryRecoveryAgentsRPCClient( FullFileNameU.Buffer, pRecoveryAgents );
RtlFreeHeap(RtlProcessHeap(), 0, FullFileNameU.Buffer);
} else {
rc = GetLastError(); }
return rc;}
DWORDEfsClientQueryUsers( IN LPCWSTR lpFileName, OUT PENCRYPTION_CERTIFICATE_HASH_LIST * pUsers )/*++
Routine Description:
Calls client stub for QueryUsersOnFile EFS API
Arguments:
lpFileName - Supplies the name of the file to be modified.
pUsers - Returns a pointer to a structure containing a list of PENCRYPTION_CERTIFICATE_HASH structures, each of which represents a user of this file (that is, someone who can decrypt the file).
Return Value:
--*/{ DWORD rc; UNICODE_STRING FullFileNameU;
if ((NULL == lpFileName) || (NULL == pUsers)) { return ERROR_INVALID_PARAMETER; } if (TranslateFileName( lpFileName, &FullFileNameU )) {
rc = EfsQueryUsersRPCClient( FullFileNameU.Buffer, pUsers );
RtlFreeHeap(RtlProcessHeap(), 0, FullFileNameU.Buffer);
} else {
rc = GetLastError(); }
return rc;}
DWORDEfsClientSetEncryptionKey( IN PENCRYPTION_CERTIFICATE pEncryptionCertificate )/*++
Routine Description:
Calls client stub for SetFileEncryptionKey EFS API
Arguments:
pEncryptionCertificate - Supplies a pointer to an EFS certificate representing the public key to use for future encryption operations.
Return Value:
--*/{ /*
if ((NULL == pEncryptionCertificate) || ( NULL == pEncryptionCertificate->pCertBlob)) { return ERROR_INVALID_PARAMETER; } */
if ( pEncryptionCertificate && ( NULL == pEncryptionCertificate->pCertBlob)) { return ERROR_INVALID_PARAMETER; }
DWORD rc = EfsSetEncryptionKeyRPCClient( pEncryptionCertificate );
return( rc );}
VOIDEfsClientFreeHashList( IN PENCRYPTION_CERTIFICATE_HASH_LIST pHashList )/*++
Routine Description:
This routine frees the memory allocated by a call to QueryUsersOnEncryptedFile and QueryRecoveryAgentsOnEncryptedFile
Arguments:
pHashList - Supplies the hash list to be freed.
Return Value:
None. Faults in user's context if passed bogus data.
--*/
{ if (NULL == pHashList) { SetLastError(ERROR_INVALID_PARAMETER); return; }
for (DWORD i=0; i<pHashList->nCert_Hash ; i++) {
PENCRYPTION_CERTIFICATE_HASH pHash = pHashList->pUsers[i];
if (pHash->lpDisplayInformation) { MIDL_user_free( pHash->lpDisplayInformation ); }
if (pHash->pUserSid) { MIDL_user_free( pHash->pUserSid ); }
MIDL_user_free( pHash->pHash->pbData ); MIDL_user_free( pHash->pHash ); MIDL_user_free( pHash ); }
MIDL_user_free( pHashList->pUsers ); MIDL_user_free( pHashList );
return;}
DWORDEfsGetMySDRpcBlob( IN PSECURITY_DESCRIPTOR pInSD, OUT PEFS_RPC_BLOB *pOutSDRpcBlob ){ DWORD rc = ERROR_SUCCESS; PSECURITY_DESCRIPTOR pRelativeSD; ULONG SDLength = 0;
if ( (pInSD == NULL) || !RtlValidSecurityDescriptor(pInSD) ) { return(ERROR_INVALID_PARAMETER); }
if ( ((PISECURITY_DESCRIPTOR)pInSD)->Control & SE_SELF_RELATIVE) {
//
// The input SD is already RELATIVE
// Just fill EFS_RPC_BLOB
//
*pOutSDRpcBlob = (PEFS_RPC_BLOB) RtlAllocateHeap( RtlProcessHeap(), 0, sizeof(EFS_RPC_BLOB) ); if (*pOutSDRpcBlob) {
(*pOutSDRpcBlob)->cbData = RtlLengthSecurityDescriptor ( pInSD ); (*pOutSDRpcBlob)->pbData = (PBYTE) pInSD;
} else {
return(ERROR_NOT_ENOUGH_MEMORY);
}
} else {
//
// get the length
//
RtlMakeSelfRelativeSD( pInSD, NULL, &SDLength ); if ( SDLength > 0 ) { *pOutSDRpcBlob = (PEFS_RPC_BLOB) RtlAllocateHeap( RtlProcessHeap(), 0, SDLength + sizeof(EFS_RPC_BLOB) );
if ( !(*pOutSDRpcBlob) ) { return(ERROR_NOT_ENOUGH_MEMORY); }
pRelativeSD = (PSECURITY_DESCRIPTOR)(*pOutSDRpcBlob + 1); (*pOutSDRpcBlob)->cbData = SDLength; (*pOutSDRpcBlob)->pbData = (PBYTE) pRelativeSD;
rc = RtlNtStatusToDosError( RtlMakeSelfRelativeSD( pInSD, pRelativeSD, &SDLength )); if ( rc != ERROR_SUCCESS ) { RtlFreeHeap(RtlProcessHeap(), 0, *pOutSDRpcBlob); *pOutSDRpcBlob = NULL; return(rc);
} } else { //
// something is wrong with the SD
//
return(ERROR_INVALID_PARAMETER); } }
return(rc);
}
DWORDEfsClientDuplicateEncryptionInfo( IN LPCWSTR lpSrcFile, IN LPCWSTR lpDestFile, IN DWORD dwCreationDistribution, IN DWORD dwAttributes, IN LPSECURITY_ATTRIBUTES lpSecurityAttributes ){ DWORD rc = ERROR_SUCCESS;
UNICODE_STRING SrcFullFileNameU; UNICODE_STRING DestFullFileNameU;
if (TranslateFileName( lpSrcFile, &SrcFullFileNameU )) {
if (TranslateFileName( lpDestFile, &DestFullFileNameU )) {
PEFS_RPC_BLOB pRpcBlob = NULL; BOOL bInheritHandle = FALSE;
if (lpSecurityAttributes) { rc = EfsGetMySDRpcBlob(lpSecurityAttributes->lpSecurityDescriptor, &pRpcBlob); bInheritHandle = lpSecurityAttributes->bInheritHandle; } if (ERROR_SUCCESS == rc) {
rc = EfsDuplicateEncryptionInfoRPCClient( SrcFullFileNameU.Buffer, DestFullFileNameU.Buffer, dwCreationDistribution, dwAttributes, pRpcBlob, bInheritHandle );
if (pRpcBlob) {
RtlFreeHeap(RtlProcessHeap(), 0, pRpcBlob);
} }
RtlFreeHeap(RtlProcessHeap(), 0, DestFullFileNameU.Buffer);
} else {
rc = GetLastError(); }
RtlFreeHeap(RtlProcessHeap(), 0, SrcFullFileNameU.Buffer);
} else {
rc = GetLastError(); }
return( rc );
}
DWORDEfsClientFileKeyInfo( IN LPCWSTR lpFileName, IN DWORD InfoClass, OUT PEFS_RPC_BLOB *KeyInfo )/*++
Routine Description:
Calls client stub for EncryptedFileKeyInfo EFS API
Arguments:
lpFileName - Supplies the name of the file.
KeyInfo - Returns a pointer to a structure containing key info. Return Value:
--*/{ DWORD rc; UNICODE_STRING FullFileNameU;
if ((NULL == lpFileName) || (NULL == KeyInfo)) { return ERROR_INVALID_PARAMETER; } if (TranslateFileName( lpFileName, &FullFileNameU )) {
rc = EfsFileKeyInfoRPCClient( FullFileNameU.Buffer, InfoClass, KeyInfo );
RtlFreeHeap(RtlProcessHeap(), 0, FullFileNameU.Buffer);
} else {
rc = GetLastError(); }
return rc;}
VOIDEfsClientFreeKeyInfo( IN PEFS_RPC_BLOB pKeyInfo )/*++
Routine Description:
This routine frees the memory allocated by a call to EfsClientFileKeyInfo
Arguments:
pKeyInfo - Supplies the memory pointer to be freed.
Return Value:
None. Faults in user's context if passed bogus data.
--*/
{ if (NULL == pKeyInfo) { SetLastError(ERROR_INVALID_PARAMETER); return; }
if (pKeyInfo->pbData) { MIDL_user_free( pKeyInfo->pbData ); } MIDL_user_free( pKeyInfo );
return;}
|
