archive
/
windows-xp
mirror of https://github.com/tongzx/nt5src
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Source code of Windows XP (NT5)
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
7 Commits
1 Branch
0 Tags
2.0 GiB
Tree: 9769ad7c3d
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '9769ad7c3d'
${ noResults }
windows-xp/Source/XPSP1/NT/ds/security/ntmarta/newsrc/krnctx.cpp

665 lines
16 KiB
Raw Normal View History

Add source files
4 years ago
  1. //+---------------------------------------------------------------------------
  2. //
  3. // Microsoft Windows NT Security
  4. // Copyright (C) Microsoft Corporation, 1997 - 1998
  5. //
  6. // File: krnctx.cpp
  7. //
  8. // Contents: Implementation of CKernelContext and NT Marta Kernel Functions
  9. //
  10. // History: 3-31-1999 kirtd Created
  11. //
  12. //----------------------------------------------------------------------------
  13. #include <aclpch.hxx>
  14. #pragma hdrstop
  15. #include <krnctx.h>
  16. #include <wmistr.h>
  17. #include <wmiumkm.h>
  18. //+---------------------------------------------------------------------------
  19. //
  20. // Member: CKernelContext::CKernelContext, public
  21. //
  22. // Synopsis: Constructor
  23. //
  24. //----------------------------------------------------------------------------
  25. CKernelContext::CKernelContext ()
  26. {
  27. m_cRefs = 1;
  28. m_hObject = NULL;
  29. m_fNameInitialized = FALSE;
  30. }
  32. //+---------------------------------------------------------------------------
  33. //
  34. // Member: CKernelContext::~CKernelContext, public
  35. //
  36. // Synopsis: Destructor
  37. //
  38. //----------------------------------------------------------------------------
  39. CKernelContext::~CKernelContext ()
  40. {
  41. if ( ( m_hObject != NULL ) && ( m_fNameInitialized == TRUE ) )
  42. {
  43. CloseHandle( m_hObject );
  44. }
  46. assert( m_cRefs == 0 );
  47. }
  49. //+---------------------------------------------------------------------------
  50. //
  51. // Member: CKernelContext::InitializeByName, public
  52. //
  53. // Synopsis: initialize the context given the name of the Kernel
  54. //
  55. //----------------------------------------------------------------------------
  56. DWORD
  57. CKernelContext::InitializeByName (LPCWSTR pObjectName, ACCESS_MASK AccessMask)
  58. {
  59. DWORD LastError;
  61. m_fNameInitialized = TRUE;
  63. m_hObject = OpenMutexW( AccessMask, FALSE, pObjectName );
  64. if ( m_hObject != NULL )
  65. {
  66. return( ERROR_SUCCESS );
  67. }
  69. LastError = GetLastError();
  71. if ( LastError == ERROR_INVALID_HANDLE )
  72. {
  73. m_hObject = OpenEventW( AccessMask, FALSE, pObjectName );
  74. if ( m_hObject != NULL )
  75. {
  76. return( ERROR_SUCCESS );
  77. }
  78. }
  79. else
  80. {
  81. goto ErrorReturn;
  82. }
  84. LastError = GetLastError();
  86. if ( LastError == ERROR_INVALID_HANDLE )
  87. {
  88. m_hObject = OpenSemaphoreW( AccessMask, FALSE, pObjectName );
  89. if ( m_hObject != NULL )
  90. {
  91. return( ERROR_SUCCESS );
  92. }
  93. }
  94. else
  95. {
  96. goto ErrorReturn;
  97. }
  99. LastError = GetLastError();
  101. if ( LastError == ERROR_INVALID_HANDLE )
  102. {
  103. m_hObject = OpenFileMappingW( AccessMask, FALSE, pObjectName );
  104. if ( m_hObject != NULL )
  105. {
  106. return( ERROR_SUCCESS );
  107. }
  108. }
  109. else
  110. {
  111. goto ErrorReturn;
  112. }
  114. LastError = GetLastError();
  116. if ( LastError == ERROR_INVALID_HANDLE )
  117. {
  118. m_hObject = OpenJobObjectW( AccessMask, FALSE, pObjectName );
  119. if ( m_hObject != NULL )
  120. {
  121. return( ERROR_SUCCESS );
  122. }
  123. }
  124. else
  125. {
  126. goto ErrorReturn;
  127. }
  129. LastError = GetLastError();
  131. if ( LastError == ERROR_INVALID_HANDLE )
  132. {
  133. m_hObject = OpenWaitableTimerW( AccessMask, FALSE, pObjectName );
  134. if ( m_hObject != NULL )
  135. {
  136. return( ERROR_SUCCESS );
  137. }
  138. }
  140. LastError = GetLastError();
  142. ErrorReturn:
  144. m_fNameInitialized = FALSE;
  146. return( LastError );
  147. }
  149. //+---------------------------------------------------------------------------
  150. //
  151. // Member: CKernelContext::InitializeByWmiName, public
  152. //
  153. // Synopsis: initlialize a WMI kernel context
  154. //
  155. //----------------------------------------------------------------------------
  156. DWORD
  157. CKernelContext::InitializeByWmiName (
  158. LPCWSTR pObjectName,
  159. ACCESS_MASK AccessMask
  160. )
  161. {
  162. DWORD Result;
  163. HANDLE hObject;
  165. Result = OpenWmiGuidObject( (LPWSTR)pObjectName, AccessMask, &hObject );
  167. if ( Result == ERROR_SUCCESS )
  168. {
  169. m_hObject = hObject;
  170. m_fNameInitialized = TRUE;
  171. }
  173. return( Result );
  174. }
  176. //+---------------------------------------------------------------------------
  177. //
  178. // Member: CKernelContext::InitializeByHandle, public
  179. //
  180. // Synopsis: initialize the context given a Kernel handle
  181. //
  182. //----------------------------------------------------------------------------
  183. DWORD
  184. CKernelContext::InitializeByHandle (HANDLE Handle)
  185. {
  186. m_hObject = Handle;
  188. assert( m_fNameInitialized == FALSE );
  190. return( ERROR_SUCCESS );
  191. }
  193. //+---------------------------------------------------------------------------
  194. //
  195. // Member: CKernelContext::AddRef, public
  196. //
  197. // Synopsis: add a reference to the context
  198. //
  199. //----------------------------------------------------------------------------
  200. DWORD
  201. CKernelContext::AddRef ()
  202. {
  203. m_cRefs += 1;
  204. return( m_cRefs );
  205. }
  207. //+---------------------------------------------------------------------------
  208. //
  209. // Member: CKernelContext::Release, public
  210. //
  211. // Synopsis: release a reference to the context
  212. //
  213. //----------------------------------------------------------------------------
  214. DWORD
  215. CKernelContext::Release ()
  216. {
  217. m_cRefs -= 1;
  219. if ( m_cRefs == 0 )
  220. {
  221. delete this;
  222. return( 0 );
  223. }
  225. return( m_cRefs );
  226. }
  228. //+---------------------------------------------------------------------------
  229. //
  230. // Member: CKernelContext::GetKernelProperties, public
  231. //
  232. // Synopsis: get properties about the context
  233. //
  234. //----------------------------------------------------------------------------
  235. DWORD
  236. CKernelContext::GetKernelProperties (
  237. PMARTA_OBJECT_PROPERTIES pObjectProperties
  238. )
  239. {
  240. if ( pObjectProperties->cbSize < sizeof( MARTA_OBJECT_PROPERTIES ) )
  241. {
  242. return( ERROR_INVALID_PARAMETER );
  243. }
  245. assert( pObjectProperties->dwFlags == 0 );
  247. return( ERROR_SUCCESS );
  248. }
  250. //+---------------------------------------------------------------------------
  251. //
  252. // Member: CKernelContext::GetKernelRights, public
  253. //
  254. // Synopsis: get the Kernel security descriptor
  255. //
  256. //----------------------------------------------------------------------------
  257. DWORD
  258. CKernelContext::GetKernelRights (
  259. SECURITY_INFORMATION SecurityInfo,
  260. PSECURITY_DESCRIPTOR* ppSecurityDescriptor
  261. )
  262. {
  263. BOOL fResult;
  264. PSECURITY_DESCRIPTOR pSecurityDescriptor = NULL;
  265. DWORD cb = 0;
  267. assert( m_hObject != NULL );
  269. fResult = GetKernelObjectSecurity(
  270. m_hObject,
  271. SecurityInfo,
  272. pSecurityDescriptor,
  273. 0,
  274. &cb
  275. );
  277. if ( ( fResult == FALSE ) && ( cb > 0 ) )
  278. {
  279. assert( ( GetLastError() == ERROR_INSUFFICIENT_BUFFER ) ||
  280. ( GetLastError() == STATUS_BUFFER_TOO_SMALL ) );
  282. pSecurityDescriptor = (PSECURITY_DESCRIPTOR)LocalAlloc( LPTR, cb );
  283. if ( pSecurityDescriptor == NULL )
  284. {
  285. return( ERROR_OUTOFMEMORY );
  286. }
  288. fResult = GetKernelObjectSecurity(
  289. m_hObject,
  290. SecurityInfo,
  291. pSecurityDescriptor,
  292. cb,
  293. &cb
  294. );
  295. }
  296. else
  297. {
  298. assert( fResult == FALSE );
  300. return( GetLastError() );
  301. }
  303. if ( fResult == TRUE )
  304. {
  305. *ppSecurityDescriptor = pSecurityDescriptor;
  306. }
  307. else
  308. {
  309. return( GetLastError() );
  310. }
  312. return( ERROR_SUCCESS );
  313. }
  315. //+---------------------------------------------------------------------------
  316. //
  317. // Member: CKernelContext::SetKernelRights, public
  318. //
  319. // Synopsis: set the window security descriptor
  320. //
  321. //----------------------------------------------------------------------------
  322. DWORD
  323. CKernelContext::SetKernelRights (
  324. SECURITY_INFORMATION SecurityInfo,
  325. PSECURITY_DESCRIPTOR pSecurityDescriptor
  326. )
  327. {
  328. assert( m_hObject != NULL );
  330. if ( SetKernelObjectSecurity(
  331. m_hObject,
  332. SecurityInfo,
  333. pSecurityDescriptor
  334. ) == FALSE )
  335. {
  336. return( GetLastError() );
  337. }
  339. return( ERROR_SUCCESS );
  340. }
  342. //
  343. // Functions from Kernel.h which dispatch unto the CKernelContext class
  344. //
  346. DWORD
  347. MartaAddRefKernelContext(
  348. IN MARTA_CONTEXT Context
  349. )
  350. {
  351. return( ( (CKernelContext *)Context )->AddRef() );
  352. }
  354. DWORD
  355. MartaCloseKernelContext(
  356. IN MARTA_CONTEXT Context
  357. )
  358. {
  359. return( ( (CKernelContext *)Context )->Release() );
  360. }
  362. DWORD
  363. MartaGetKernelProperties(
  364. IN MARTA_CONTEXT Context,
  365. IN OUT PMARTA_OBJECT_PROPERTIES pProperties
  366. )
  367. {
  368. return( ( (CKernelContext *)Context )->GetKernelProperties( pProperties ) );
  369. }
  371. DWORD
  372. MartaGetKernelTypeProperties(
  373. IN OUT PMARTA_OBJECT_TYPE_PROPERTIES pProperties
  374. )
  375. {
  376. if ( pProperties->cbSize < sizeof( MARTA_OBJECT_TYPE_PROPERTIES ) )
  377. {
  378. return( ERROR_INVALID_PARAMETER );
  379. }
  381. assert( pProperties->dwFlags == 0 );
  383. return( ERROR_SUCCESS );
  384. }
  386. DWORD
  387. MartaGetKernelRights(
  388. IN MARTA_CONTEXT Context,
  389. IN SECURITY_INFORMATION SecurityInfo,
  390. OUT PSECURITY_DESCRIPTOR * ppSecurityDescriptor
  391. )
  392. {
  393. return( ( (CKernelContext *)Context )->GetKernelRights(
  394. SecurityInfo,
  395. ppSecurityDescriptor
  396. ) );
  397. }
  399. DWORD
  400. MartaOpenKernelNamedObject(
  401. IN LPCWSTR pObjectName,
  402. IN ACCESS_MASK AccessMask,
  403. OUT PMARTA_CONTEXT pContext
  404. )
  405. {
  406. DWORD Result;
  407. CKernelContext* pKernelContext;
  409. pKernelContext = new CKernelContext;
  410. if ( pKernelContext == NULL )
  411. {
  412. return( ERROR_OUTOFMEMORY );
  413. }
  415. Result = pKernelContext->InitializeByName( pObjectName, AccessMask );
  416. if ( Result != ERROR_SUCCESS )
  417. {
  418. pKernelContext->Release();
  419. return( Result );
  420. }
  422. *pContext = pKernelContext;
  423. return( ERROR_SUCCESS );
  424. }
  426. DWORD
  427. MartaOpenKernelHandleObject(
  428. IN HANDLE Handle,
  429. IN ACCESS_MASK AccessMask,
  430. OUT PMARTA_CONTEXT pContext
  431. )
  432. {
  433. DWORD Result;
  434. CKernelContext* pKernelContext;
  436. pKernelContext = new CKernelContext;
  437. if ( pKernelContext == NULL )
  438. {
  439. return( ERROR_OUTOFMEMORY );
  440. }
  442. Result = pKernelContext->InitializeByHandle( Handle );
  443. if ( Result != ERROR_SUCCESS )
  444. {
  445. pKernelContext->Release();
  446. return( Result );
  447. }
  449. *pContext = pKernelContext;
  450. return( ERROR_SUCCESS );
  451. }
  453. DWORD
  454. MartaSetKernelRights(
  455. IN MARTA_CONTEXT Context,
  456. IN SECURITY_INFORMATION SecurityInfo,
  457. IN PSECURITY_DESCRIPTOR pSecurityDescriptor
  458. )
  459. {
  460. return( ( (CKernelContext *)Context )->SetKernelRights(
  461. SecurityInfo,
  462. pSecurityDescriptor
  463. ) );
  464. }
  466. //
  467. // Routines provided by AlanWar for accessing WmiGuid objects
  468. //
  470. HANDLE RWmiGuidHandle = NULL;
  472. _inline HANDLE WmipAllocEvent(
  473. VOID
  474. )
  475. {
  476. HANDLE EventHandle;
  478. EventHandle = (HANDLE)InterlockedExchangePointer(( PVOID *)&RWmiGuidHandle, NULL );
  480. if ( EventHandle == NULL ) {
  482. EventHandle = CreateEvent( NULL, FALSE, FALSE, NULL );
  483. }
  485. return( EventHandle );
  486. }
  488. _inline void WmipFreeEvent(
  489. HANDLE EventHandle
  490. )
  491. {
  492. if ( InterlockedCompareExchangePointer( &RWmiGuidHandle,
  493. EventHandle,
  494. NULL) != NULL ) {
  496. CloseHandle( EventHandle );
  497. }
  498. }
  500. ULONG RWmipSendWmiKMRequest(
  501. ULONG Ioctl,
  502. PVOID Buffer,
  503. ULONG InBufferSize,
  504. ULONG MaxBufferSize,
  505. ULONG *ReturnSize
  506. )
  507. /*+++
  509. Routine Description:
  511. This routine does the work of sending WMI requests to the WMI kernel
  512. mode device. Any retry errors returned by the WMI device are handled
  513. in this routine.
  515. Arguments:
  517. Ioctl is the IOCTL code to send to the WMI device
  518. Buffer is the input and output buffer for the call to the WMI device
  519. InBufferSize is the size of the buffer passed to the device
  520. MaxBufferSize is the maximum number of bytes that can be written
  521. into the buffer
  522. *ReturnSize on return has the actual number of bytes written in buffer
  524. Return Value:
  526. ERROR_SUCCESS or an error code
  527. ---*/
  528. {
  529. OVERLAPPED Overlapped;
  530. ULONG Status;
  531. BOOL IoctlSuccess;
  532. HANDLE WmipKMHandle = NULL;
  533. //
  534. // If device is not open for then open it now. The
  535. // handle is closed in the process detach dll callout (DlllMain)
  536. WmipKMHandle = CreateFile(WMIDataDeviceName,
  537. GENERIC_READ | GENERIC_WRITE,
  538. 0,
  539. NULL,
  540. OPEN_EXISTING,
  541. FILE_ATTRIBUTE_NORMAL |
  542. FILE_FLAG_OVERLAPPED,
  543. NULL);
  544. if (WmipKMHandle == (HANDLE)-1)
  545. {
  546. WmipKMHandle = NULL;
  547. return(GetLastError());
  548. }
  550. Overlapped.hEvent = WmipAllocEvent();
  551. if (Overlapped.hEvent == NULL)
  552. {
  553. return(ERROR_NOT_ENOUGH_MEMORY);
  554. }
  556. do
  557. {
  558. IoctlSuccess = DeviceIoControl(WmipKMHandle,
  559. Ioctl,
  560. Buffer,
  561. InBufferSize,
  562. Buffer,
  563. MaxBufferSize,
  564. ReturnSize,
  565. &Overlapped);
  567. if (GetLastError() == ERROR_IO_PENDING)
  568. {
  569. IoctlSuccess = GetOverlappedResult(WmipKMHandle,
  570. &Overlapped,
  571. ReturnSize,
  572. TRUE);
  573. }
  575. if (! IoctlSuccess)
  576. {
  577. Status = GetLastError();
  578. } else {
  579. Status = ERROR_SUCCESS;
  580. }
  581. } while (Status == ERROR_WMI_TRY_AGAIN);
  584. NtClose( WmipKMHandle );
  586. WmipFreeEvent(Overlapped.hEvent);
  588. return(Status);
  589. }
  591. //+---------------------------------------------------------------------------
  592. //
  593. // Function: OpenWmiGuidObject
  594. //
  595. // Synopsis: Gets a handle to the specified WmiGuid object
  596. //
  597. // Arguments: [IN pwszObject] -- Object to open
  598. // [IN AccessMask] -- Type of open to do
  599. // [OUT pHandle] -- Where the handle to the object
  600. // is returned
  601. //
  602. // Returns: ERROR_SUCCESS -- Success
  603. //
  604. //----------------------------------------------------------------------------
  605. DWORD
  606. OpenWmiGuidObject(IN LPWSTR pwszObject,
  607. IN ACCESS_MASK AccessMask,
  608. OUT PHANDLE pHandle)
  609. {
  610. DWORD dwErr;
  611. UNICODE_STRING GuidString;
  612. WMIOPENGUIDBLOCK WmiOpenGuidBlock;
  613. WCHAR GuidObjectNameBuffer[WmiGuidObjectNameLength+1];
  614. PWCHAR GuidObjectName = GuidObjectNameBuffer;
  615. ULONG ReturnSize;
  616. OBJECT_ATTRIBUTES ObjectAttributes;
  617. ULONG Length;
  619. Length = (wcslen(WmiGuidObjectDirectory) + wcslen(pwszObject) + 1) * sizeof(WCHAR);
  621. if ( Length > sizeof(GuidObjectNameBuffer) )
  622. {
  623. GuidObjectName = (PWCHAR)LocalAlloc( LPTR, Length );
  625. if ( GuidObjectName == NULL )
  626. {
  627. return ERROR_NOT_ENOUGH_MEMORY;
  628. }
  629. }
  631. wcscpy(GuidObjectName, WmiGuidObjectDirectory);
  632. wcscat(GuidObjectName, pwszObject);
  633. RtlInitUnicodeString(&GuidString, GuidObjectName);
  635. memset(&ObjectAttributes, 0, sizeof(OBJECT_ATTRIBUTES));
  636. ObjectAttributes.Length = sizeof(OBJECT_ATTRIBUTES);
  637. ObjectAttributes.ObjectName = &GuidString;
  639. WmiOpenGuidBlock.ObjectAttributes = &ObjectAttributes;
  641. WmiOpenGuidBlock.DesiredAccess = AccessMask;
  643. dwErr = RWmipSendWmiKMRequest(IOCTL_WMI_OPEN_GUID,
  644. (PVOID)&WmiOpenGuidBlock,
  645. sizeof(WMIOPENGUIDBLOCK),
  646. sizeof(WMIOPENGUIDBLOCK),
  647. &ReturnSize);
  649. if (dwErr == ERROR_SUCCESS)
  650. {
  651. *pHandle = WmiOpenGuidBlock.Handle.Handle;
  652. }
  653. else
  654. {
  655. *pHandle = NULL;
  656. }
  658. if ( GuidObjectName != GuidObjectNameBuffer )
  659. {
  660. LocalFree( GuidObjectName );
  661. }
  663. return(dwErr);
  664. }