archive
/
windows-xp
mirror of https://github.com/tongzx/nt5src
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Source code of Windows XP (NT5)
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
9 Commits
1 Branch
0 Tags
2.0 GiB
Tree: 75c48ba87f
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '75c48ba87f'
${ noResults }
windows-xp/Source/XPSP1/NT/net/ias/protocol/radius/procaccess.cpp

339 lines
8.2 KiB
Raw Normal View History

Add source files
4 years ago
  1. //#--------------------------------------------------------------
  2. //
  3. // File: procaccess.cpp
  4. //
  5. // Synopsis: Implementation of CProcAccess class methods
  6. //
  7. //
  8. // History: 10/20/97 MKarki Created
  9. //
  10. // Copyright (C) 1997-98 Microsoft Corporation
  11. // All rights reserved.
  12. //
  13. //----------------------------------------------------------------
  14. #include "radcommon.h"
  15. #include "procaccess.h"
  17. //+++-------------------------------------------------------------
  18. //
  19. // Function: CProcAccess
  20. //
  21. // Synopsis: This is CProcAccess class constructor
  22. //
  23. // Arguments: NONE
  24. //
  25. // Returns: NONE
  26. //
  27. //
  28. // History: MKarki Created 10/20/97
  29. //
  30. //----------------------------------------------------------------
  31. CProcAccess::CProcAccess()
  32. : m_pCPreValidator (NULL),
  33. m_pCHashMD5 (NULL),
  34. m_pCProxyState (NULL),
  35. m_pCSendToPipe (NULL)
  36. {
  37. } // end of CProcAccess class constructor
  39. //+++-------------------------------------------------------------
  40. //
  41. // Function: CProcAccess
  42. //
  43. // Synopsis: This is CProcAccess class destructor
  44. //
  45. // Arguments: NONE
  46. //
  47. // Returns: NONE
  48. //
  49. //
  50. // History: MKarki Created 10/20/97
  51. //
  52. //----------------------------------------------------------------
  53. CProcAccess::~CProcAccess()
  54. {
  55. } // end of CProcAccess class destructor
  58. //+++-------------------------------------------------------------
  59. //
  60. // Function: Init
  61. //
  62. // Synopsis: This is CProcAccess class public initialization
  63. // method
  64. //
  65. // Arguments: NONE
  66. //
  67. // Returns: status
  68. //
  69. //
  70. // History: MKarki Created 10/20/97
  71. //
  72. //----------------------------------------------------------------
  73. BOOL
  74. CProcAccess::Init(
  75. CPreValidator *pCPreValidator,
  76. CHashMD5 *pCHashMD5,
  77. CProxyState *pCProxyState,
  78. CSendToPipe *pCSendToPipe
  79. )
  80. {
  81. _ASSERT ((NULL != pCPreValidator) &&
  82. (NULL != pCHashMD5) &&
  83. (NULL != pCProxyState) &&
  84. (NULL != pCSendToPipe)
  85. );
  88. m_pCPreValidator = pCPreValidator;
  90. m_pCHashMD5 = pCHashMD5;
  92. m_pCProxyState = pCProxyState;
  94. m_pCSendToPipe = pCSendToPipe;
  96. return (TRUE);
  98. } // end of CProcAccess::Init method
  100. //+++-------------------------------------------------------------
  101. //
  102. // Function: ProcessInPacket
  103. //
  104. // Synopsis: This is CProcAccess class public method
  105. // which carries out the processing of an inbound
  106. // RADIUS packet - for now it just decrypts the
  107. // password
  108. //
  109. // Arguments:
  110. // [in] CPacketRadius*
  111. //
  112. // Returns: HRESULT - status
  113. //
  114. // History: MKarki Created 10/20/97
  115. //
  116. // Called By: CPreProcessor::StartProcessing public method
  117. //
  118. //----------------------------------------------------------------
  119. HRESULT
  120. CProcAccess::ProcessInPacket (
  121. CPacketRadius *pCPacketRadius
  122. )
  123. {
  124. // If the User-Password is present, ...
  125. PIASATTRIBUTE pwd = pCPacketRadius->GetUserPassword();
  126. if (pwd)
  127. {
  128. // ... then decrypt it.
  129. pCPacketRadius->cryptBuffer(
  130. FALSE,
  131. FALSE,
  132. pwd->Value.OctetString.lpValue,
  133. pwd->Value.OctetString.dwLength
  134. );
  135. }
  137. return m_pCSendToPipe->Process (pCPacketRadius);
  138. }
  140. //++--------------------------------------------------------------
  141. //
  142. // Function: ProcessOutPacket
  143. //
  144. // Synopsis: This is CProcAccess class public method
  145. // which carries out the processing of an outbound
  146. // RADIUS packet - for now it just encrypts the
  147. // password
  148. //
  149. //
  150. // Arguments:
  151. // [in] CPacketRadius*
  152. //
  153. // Returns: HRESULT - status
  154. //
  155. //
  156. // History: MKarki Created 10/20/97
  157. //
  158. // Called By:
  159. //
  160. //----------------------------------------------------------------
  161. HRESULT
  162. CProcAccess::ProcessOutPacket (
  163. CPacketRadius *pCPacketRadius
  164. )
  165. {
  166. BOOL bStatus = FALSE;
  167. BOOL bRetVal = FALSE;
  168. DWORD dwSize = 0;
  169. DWORD dwPasswordLength = 0;
  170. BYTE RequestAuthenticator[AUTHENTICATOR_SIZE];
  171. DWORD dwProxyId = 0;
  174. _ASSERT (pCPacketRadius);
  176. /*
  177. __try
  178. {
  179. //
  180. // generate a request authenticator
  181. // TODO - make it a random value later
  182. //
  183. ZeroMemory (RequestAuthenticator, AUTHENTICATOR_SIZE);
  186. //
  187. // insert the proxy state attribute now
  188. //
  189. bStatus = m_pCProxyState->GenerateProxyState (
  190. pCPacketRadius,
  191. &dwProxyId
  192. );
  193. if (FALSE == bStatus) { __leave; }
  195. //
  196. // set the Proxy State information
  197. //
  198. bStatus = m_pCProxyState->SetProxyStateInfo (
  199. pCPacketRadius,
  200. dwProxyId,
  201. reinterpret_cast <PBYTE>
  202. (&RequestAuthenticator)
  203. );
  204. if (FALSE == bStatus) { __leave; }
  207. //
  208. // check if we have a User-Password attribute
  209. //
  211. //
  212. // take the cleartext password and put encrypted
  213. // password in its place
  214. //
  215. bStatus = GeneratePassword (pCPacketRadius);
  216. if (FALSE == bStatus)
  217. __leave;
  219. //
  220. // insert the User-Password attribute here
  221. //
  222. bStatus = InsertPassword (pCPacketRadius);
  223. if (FALSE == bStatus)
  224. __leave;
  227. //
  228. // we have successfully done the processing here
  229. //
  230. bRetVal = TRUE;
  232. }
  233. __finally
  234. {
  235. //
  236. // nothing here for now
  237. //
  238. }
  240. return (bRetVal);
  241. */
  242. return (S_OK);
  244. } // end of CProcAccess::ProcessOutPacket method
  247. //++--------------------------------------------------------------
  248. //
  249. // Function: InsertPassword
  250. //
  251. // Synopsis: This is CProcAccess class private method
  252. // which inserts an encrypted password into
  253. // the outbound RADIUS packet
  254. //
  255. // NOTE: The password is not a null-terminated
  256. // string
  257. //
  258. //
  259. // Arguments:
  260. // [in] CPacketRadius*
  261. //
  262. // Returns: status
  263. //
  264. //
  265. // History: MKarki Created 10/20/97
  266. //
  267. // Called By: CProcAccess::ProcessOutPacket method
  268. //
  269. //----------------------------------------------------------------
  270. BOOL
  271. CProcAccess::InsertPassword (
  272. CPacketRadius *pCPacketRadius
  273. )
  274. {
  275. BOOL bRetVal = FALSE;
  276. BYTE UserPassword[MAX_PASSWORD_SIZE];
  277. DWORD dwPasswordLength = MAX_PASSWORD_SIZE;
  278. BOOL bStatus = FALSE;
  280. _ASSERT (pCPacketRadius);
  282. /*
  283. __try
  284. {
  285. //
  286. // get the password out of the packet first
  287. //
  288. bStatus = pCPacketRadius->GetPassword (
  289. UserPassword,
  290. &dwPasswordLength
  291. );
  292. if (FALSE == bStatus)
  293. __leave;
  295. //
  296. // get a new out attribute now
  297. bStatus = pCPacketRadius->CreateOutAttribute (
  298. &pCAttribute,
  299. dwPasswordLength
  300. );
  301. if (FALSE == bStatus)
  302. __leave;
  304. //
  305. // set the attribute information
  306. //
  307. bStatus = pCAttribute->SetInfo (
  308. USER_PASSWORD_ATTRIB,
  309. reinterpret_cast <PBYTE> (UserPassword),
  310. dwPasswordLength
  311. );
  312. if (FALSE == bStatus)
  313. __leave;
  315. //
  316. // store the attribute into the collection
  317. //
  318. bStatus = pCPacketRadius->StoreOutAttribute (pCAttribute);
  319. if (FALSE == bStatus)
  320. __leave;
  323. //
  324. // success
  325. //
  326. bRetVal = TRUE;
  328. }
  329. __finally
  330. {
  331. //
  332. // nothing here for now
  333. //
  334. }
  335. */
  337. return (bRetVal);
  339. } // end of CProcAccess::InsertPassword method