archive
/
windows-xp
mirror of https://github.com/tongzx/nt5src
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Source code of Windows XP (NT5)
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
6 Commits
1 Branch
0 Tags
2.0 GiB
Tree: daad8a087a
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'daad8a087a'
${ noResults }
windows-xp/Source/XPSP1/NT/base/fs/rdr2/drt/daytona/rxconfig.c

651 lines
17 KiB
Raw Normal View History

Add source files
4 years ago
  1. /*++
  3. Copyright (c) 1991-1992 Microsoft Corporation
  5. Module Name:
  7. Rxconfig.c
  9. Abstract:
  11. Redirector configuration routines for DRT
  13. Author:
  15. Balan Sethu Raman -- Created from the workstation service code
  17. --*/
  19. #include <nt.h>
  20. #include <ntrtl.h>
  21. #include <nturtl.h>
  22. #include <ntlsa.h>
  24. #include <windows.h>
  25. #include "rxdrt.h"
  26. #include "rxdevice.h"
  27. #include "rxconfig.h"
  28. #include "malloc.h"
  30. #define PRIVILEGE_BUF_SIZE 512
  31. #define WS_LINKAGE_REGISTRY_PATH L"LanmanWorkstation\\Linkage"
  32. #define WS_BIND_VALUE_NAME L"Bind"
  34. extern NTSTATUS
  35. RxBindATransport(
  36. IN PWSTR ValueName,
  37. IN ULONG ValueType,
  38. IN PVOID ValueData,
  39. IN ULONG ValueLength,
  40. IN PVOID Context,
  41. IN PVOID EntryContext
  42. );
  44. //
  45. // For specifying the importance of a transport when binding to it.
  46. // The higher the number means that the transport will be searched
  47. // first.
  48. //
  49. STATIC DWORD QualityOfService = 65536;
  51. NTSTATUS
  52. RxGetDomainName(
  53. IN PULONG pBufferLengthInBytes,
  54. IN PWCHAR Buffer, // alloc and set ptr (free with NetApiBufferFree)
  55. OUT PBOOLEAN IsWorkgroupName
  56. )
  58. /*++
  60. Routine Description:
  62. Returns the name of the domain or workgroup this machine belongs to.
  64. Arguments:
  66. DomainNamePtr - The name of the domain or workgroup
  68. IsWorkgroupName - Returns TRUE if the name is a workgroup name.
  69. Returns FALSE if the name is a domain name.
  71. Return Value:
  73. NERR_Success - Success.
  74. NERR_CfgCompNotFound - There was an error determining the domain name
  76. --*/
  77. {
  78. NTSTATUS ntstatus;
  79. LSA_HANDLE PolicyHandle;
  80. PPOLICY_ACCOUNT_DOMAIN_INFO PrimaryDomainInfo;
  81. OBJECT_ATTRIBUTES ObjAttributes;
  83. //
  84. // Open a handle to the local security policy. Initialize the
  85. // objects attributes structure first.
  86. //
  87. InitializeObjectAttributes(
  88. &ObjAttributes,
  89. NULL,
  90. 0L,
  91. NULL,
  92. NULL
  93. );
  95. ntstatus = LsaOpenPolicy(
  96. NULL,
  97. &ObjAttributes,
  98. POLICY_VIEW_LOCAL_INFORMATION,
  99. &PolicyHandle
  100. );
  102. if (! NT_SUCCESS(ntstatus)) {
  103. return ntstatus;
  104. }
  106. //
  107. // Get the name of the primary domain from LSA
  108. //
  109. ntstatus = LsaQueryInformationPolicy(
  110. PolicyHandle,
  111. PolicyPrimaryDomainInformation,
  112. (PVOID *) &PrimaryDomainInfo
  113. );
  115. if (! NT_SUCCESS(ntstatus)) {
  116. (void) LsaClose(PolicyHandle);
  117. return ntstatus;
  118. }
  120. (void) LsaClose(PolicyHandle);
  122. if (PrimaryDomainInfo->DomainName.Length + sizeof(WCHAR) > *pBufferLengthInBytes) {
  123. ntstatus = STATUS_BUFFER_OVERFLOW;
  124. } else {
  125. *pBufferLengthInBytes = PrimaryDomainInfo->DomainName.Length;
  126. RtlZeroMemory(
  127. Buffer,
  128. PrimaryDomainInfo->DomainName.Length + sizeof(WCHAR)
  129. );
  131. memcpy(
  132. Buffer,
  133. PrimaryDomainInfo->DomainName.Buffer,
  134. PrimaryDomainInfo->DomainName.Length
  135. );
  136. }
  138. *IsWorkgroupName = (PrimaryDomainInfo->DomainSid == NULL);
  139. (void) LsaFreeMemory((PVOID) PrimaryDomainInfo);
  141. return STATUS_SUCCESS;
  142. }
  144. NTSTATUS
  145. RxStartRedirector(
  146. VOID
  147. )
  148. {
  149. NTSTATUS status;
  150. WCHAR NameBuffer[MAX_PATH];
  151. ULONG Length;
  152. WCHAR ComputerName[MAX_COMPUTERNAME_LENGTH + 1];
  153. ULONG ComputerNameLengthInBytes;
  154. WCHAR DomainName[DNLEN + 1];
  155. ULONG DomainNameLengthInBytes;
  156. DWORD version;
  157. WKSTA_INFO_502 WkstaInfo;
  158. UNICODE_STRING InputString;
  159. UNICODE_STRING OutputString;
  160. BOOLEAN IsWorkGroup;
  162. BYTE Buffer[max(sizeof(LMR_REQUEST_PACKET) + (CNLEN + 1) * sizeof(WCHAR) +
  163. (DNLEN + 1) * sizeof(WCHAR),
  164. sizeof(LMDR_REQUEST_PACKET))];
  166. PLMR_REQUEST_PACKET Rrp = (PLMR_REQUEST_PACKET) Buffer;
  167. PLMDR_REQUEST_PACKET Drrp = (PLMDR_REQUEST_PACKET) Buffer;
  169. // Obtain the computer name.
  170. Length = MAX_PATH;
  171. status = GetComputerName(NameBuffer,&Length);
  173. ASSERT(Length <= MAX_COMPUTERNAME_LENGTH);
  175. // Canonicalize the name. ( Upcase conversion )
  176. InputString.Length = InputString.MaximumLength = (USHORT)((Length + 1) * sizeof(WCHAR));
  177. InputString.Buffer = NameBuffer;
  179. OutputString.Length = OutputString.MaximumLength = (USHORT)((Length + 1) * sizeof(WCHAR));
  180. OutputString.Buffer = ComputerName;
  182. ComputerNameLengthInBytes = Length * sizeof(WCHAR);
  184. RtlUpcaseUnicodeString(&OutputString,&InputString,FALSE);
  186. // Get the primary domain name from the configuration file
  187. DomainNameLengthInBytes = sizeof(WCHAR) * (DNLEN + 1);
  188. status = RxGetDomainName(&DomainNameLengthInBytes,DomainName,&IsWorkGroup);
  189. if (NT_SUCCESS(status)) {
  190. // Initialize redirector configuration
  191. Rrp->Type = ConfigInformation;
  192. Rrp->Version = REQUEST_PACKET_VERSION;
  194. wcscpy(Rrp->Parameters.Start.RedirectorName,
  195. ComputerName);
  196. Rrp->Parameters.Start.RedirectorNameLength = ComputerNameLengthInBytes;
  198. Rrp->Parameters.Start.DomainNameLength = DomainNameLengthInBytes;
  199. wcscpy((Rrp->Parameters.Start.RedirectorName+ComputerNameLengthInBytes),
  200. DomainName);
  202. status = RxRedirFsControl(
  203. RxRedirDeviceHandle,
  204. FSCTL_LMR_START,
  205. Rrp,
  206. sizeof(LMR_REQUEST_PACKET) +
  207. Rrp->Parameters.Start.RedirectorNameLength+
  208. Rrp->Parameters.Start.DomainNameLength,
  209. (LPBYTE) &WkstaInfo,
  210. sizeof(WKSTA_INFO_502),
  211. NULL
  212. );
  213. }
  215. return status;
  216. }
  219. NTSTATUS
  220. RxBindToTransports(
  221. VOID
  222. )
  223. /*++
  225. Routine Description:
  227. This function binds the transports specified in the registry to the
  228. redirector. The order of priority for the transports follows the order
  229. they are listed by the "Bind=" valuename.
  231. Arguments:
  233. None.
  235. Return Value:
  237. NTSTATUS - Success or reason for failure.
  239. --*/
  240. {
  241. NTSTATUS status;
  242. NTSTATUS tempStatus;
  243. NTSTATUS ntstatus;
  244. DWORD transportsBound;
  245. PRTL_QUERY_REGISTRY_TABLE queryTable;
  246. LIST_ENTRY header;
  247. PLIST_ENTRY pListEntry;
  248. PRX_BIND pBind;
  251. //
  252. // Ask the RTL to call us back for each subvalue in the MULTI_SZ
  253. // value \LanmanWorkstation\Linkage\Bind.
  254. //
  255. queryTable = (PVOID)malloc(sizeof(RTL_QUERY_REGISTRY_TABLE) * 2);
  257. if (queryTable == NULL) {
  258. return ERROR_NOT_ENOUGH_MEMORY;
  259. }
  261. InitializeListHead( &header);
  263. queryTable[0].QueryRoutine = RxBindATransport;
  264. queryTable[0].Flags = 0;
  265. queryTable[0].Name = WS_BIND_VALUE_NAME;
  266. queryTable[0].EntryContext = NULL;
  267. queryTable[0].DefaultType = REG_NONE;
  268. queryTable[0].DefaultData = NULL;
  269. queryTable[0].DefaultLength = 0;
  271. queryTable[1].QueryRoutine = NULL;
  272. queryTable[1].Flags = 0;
  273. queryTable[1].Name = NULL;
  275. ntstatus = RtlQueryRegistryValues(
  276. RTL_REGISTRY_SERVICES, // path relative to ...
  277. WS_LINKAGE_REGISTRY_PATH,
  278. queryTable,
  279. (PVOID) &header, // context
  280. NULL
  281. );
  283. //
  284. // First process all the data, then clean up.
  285. //
  287. for ( pListEntry = header.Flink;
  288. pListEntry != &header;
  289. pListEntry = pListEntry->Flink) {
  291. pBind = CONTAINING_RECORD(
  292. pListEntry,
  293. RX_BIND,
  294. ListEntry
  295. );
  297. tempStatus = NO_ERROR;
  299. if ( pBind->Redir->EventHandle != INVALID_HANDLE_VALUE) {
  300. WaitForSingleObject(
  301. pBind->Redir->EventHandle,
  302. INFINITE
  303. );
  304. pBind->Redir->Bound = (tempStatus == NO_ERROR);
  305. if (tempStatus == ERROR_DUP_NAME) {
  306. status = tempStatus;
  307. }
  308. }
  310. if ( pBind->Dgrec->EventHandle != INVALID_HANDLE_VALUE) {
  311. WaitForSingleObject(
  312. pBind->Dgrec->EventHandle,
  313. INFINITE
  314. );
  315. pBind->Dgrec->Bound = (tempStatus == NO_ERROR);
  316. if (tempStatus == ERROR_DUP_NAME) {
  317. status = tempStatus;
  318. }
  319. }
  321. //
  322. // If one is installed but the other is not, clean up the other.
  323. //
  325. if ( pBind->Dgrec->Bound != pBind->Redir->Bound) {
  326. RxUnbindTransport2( pBind);
  327. }
  328. }
  331. if (NT_SUCCESS(ntstatus)) {
  332. for ( pListEntry = header.Flink;
  333. pListEntry != &header;
  334. pListEntry = pListEntry->Flink) {
  336. pBind = CONTAINING_RECORD(
  337. pListEntry,
  338. RX_BIND,
  339. ListEntry
  340. );
  342. RxUnbindTransport2( pBind);
  343. }
  344. }
  346. for ( transportsBound = 0;
  347. IsListEmpty( &header) == FALSE;
  348. LocalFree((HLOCAL) pBind)) {
  350. pListEntry = RemoveHeadList( &header);
  352. pBind = CONTAINING_RECORD(
  353. pListEntry,
  354. RX_BIND,
  355. ListEntry
  356. );
  358. if ( pBind->Redir->EventHandle != INVALID_HANDLE_VALUE) {
  359. CloseHandle( pBind->Redir->EventHandle);
  360. }
  362. if ( pBind->Redir->Bound == TRUE) {
  363. transportsBound++;
  364. }
  366. if ( pBind->Dgrec->EventHandle != INVALID_HANDLE_VALUE) {
  367. CloseHandle( pBind->Dgrec->EventHandle);
  368. }
  370. }
  372. (void) free((HLOCAL) queryTable);
  374. if ( RxRedirAsyncDeviceHandle != NULL) {
  375. (VOID)NtClose( RxRedirAsyncDeviceHandle);
  376. RxRedirAsyncDeviceHandle = NULL;
  377. }
  379. if ( RxDgrecAsyncDeviceHandle != NULL) {
  380. (VOID)NtClose( RxDgrecAsyncDeviceHandle);
  381. RxDgrecAsyncDeviceHandle = NULL;
  382. }
  384. return ntstatus;
  385. }
  387. NTSTATUS
  388. RxBindATransport(
  389. IN PWSTR ValueName,
  390. IN ULONG ValueType,
  391. IN PVOID ValueData,
  392. IN ULONG ValueLength,
  393. IN PVOID Context,
  394. IN PVOID EntryContext
  395. )
  396. /*++
  397. This routine always returns SUCCESS because we want all transports
  398. to be processed fully.
  399. --*/
  400. {
  401. NTSTATUS status;
  403. DBG_UNREFERENCED_PARAMETER( ValueName);
  404. DBG_UNREFERENCED_PARAMETER( ValueLength);
  405. DBG_UNREFERENCED_PARAMETER( EntryContext);
  407. //
  408. // Bind transport
  409. //
  411. status = RxAsyncBindTransport(
  412. ValueData, // name of transport device object
  413. --QualityOfService,
  414. (PLIST_ENTRY)Context);
  416. return STATUS_SUCCESS;
  417. }
  419. DWORD
  420. RxGetPrivilege(
  421. IN DWORD numPrivileges,
  422. IN PULONG pulPrivileges
  423. )
  424. /*++
  426. Routine Description:
  428. This function alters the privilege level for the current thread.
  430. It does this by duplicating the token for the current thread, and then
  431. applying the new privileges to that new token, then the current thread
  432. impersonates with that new token.
  434. Privileges can be relinquished by calling NetpReleasePrivilege().
  436. Arguments:
  438. numPrivileges - This is a count of the number of privileges in the
  439. array of privileges.
  441. pulPrivileges - This is a pointer to the array of privileges that are
  442. desired. This is an array of ULONGs.
  444. Return Value:
  446. NO_ERROR - If the operation was completely successful.
  448. Otherwise, it returns mapped return codes from the various NT
  449. functions that are called.
  451. --*/
  452. {
  453. DWORD status;
  454. NTSTATUS ntStatus;
  455. HANDLE ourToken;
  456. HANDLE newToken;
  457. OBJECT_ATTRIBUTES Obja;
  458. SECURITY_QUALITY_OF_SERVICE SecurityQofS;
  459. ULONG bufLen;
  460. ULONG returnLen;
  461. PTOKEN_PRIVILEGES pPreviousState;
  462. PTOKEN_PRIVILEGES pTokenPrivilege = NULL;
  463. DWORD i;
  465. //
  466. // Initialize the Privileges Structure
  467. //
  468. pTokenPrivilege = LocalAlloc(LMEM_FIXED, sizeof(TOKEN_PRIVILEGES) +
  469. (sizeof(LUID_AND_ATTRIBUTES) * numPrivileges));
  471. if (pTokenPrivilege == NULL) {
  472. status = GetLastError();
  473. return(status);
  474. }
  475. pTokenPrivilege->PrivilegeCount = numPrivileges;
  476. for (i=0; i<numPrivileges ;i++ ) {
  477. pTokenPrivilege->Privileges[i].Luid = RtlConvertLongToLargeInteger(
  478. pulPrivileges[i]);
  479. pTokenPrivilege->Privileges[i].Attributes = SE_PRIVILEGE_ENABLED;
  481. }
  483. //
  484. // Initialize Object Attribute Structure.
  485. //
  486. InitializeObjectAttributes(&Obja,NULL,0L,NULL,NULL);
  488. //
  489. // Initialize Security Quality Of Service Structure
  490. //
  491. SecurityQofS.Length = sizeof(SECURITY_QUALITY_OF_SERVICE);
  492. SecurityQofS.ImpersonationLevel = SecurityImpersonation;
  493. SecurityQofS.ContextTrackingMode = FALSE; // Snapshot client context
  494. SecurityQofS.EffectiveOnly = FALSE;
  496. Obja.SecurityQualityOfService = &SecurityQofS;
  498. //
  499. // Allocate storage for the structure that will hold the Previous State
  500. // information.
  501. //
  502. pPreviousState = LocalAlloc(LMEM_FIXED, PRIVILEGE_BUF_SIZE);
  503. if (pPreviousState == NULL) {
  505. status = GetLastError();
  507. LocalFree(pTokenPrivilege);
  508. return(status);
  509. }
  511. //
  512. // Open our own Token
  513. //
  514. ntStatus = NtOpenProcessToken(
  515. NtCurrentProcess(),
  516. TOKEN_DUPLICATE,
  517. &ourToken);
  519. if (!NT_SUCCESS(ntStatus)) {
  520. LocalFree(pPreviousState);
  521. LocalFree(pTokenPrivilege);
  522. return(RtlNtStatusToDosError(ntStatus));
  523. }
  525. //
  526. // Duplicate that Token
  527. //
  528. ntStatus = NtDuplicateToken(
  529. ourToken,
  530. TOKEN_IMPERSONATE | TOKEN_ADJUST_PRIVILEGES | TOKEN_QUERY,
  531. &Obja,
  532. FALSE, // Duplicate the entire token
  533. TokenImpersonation, // TokenType
  534. &newToken); // Duplicate token
  536. if (!NT_SUCCESS(ntStatus)) {
  537. LocalFree(pPreviousState);
  538. LocalFree(pTokenPrivilege);
  539. NtClose(ourToken);
  540. return(RtlNtStatusToDosError(ntStatus));
  541. }
  543. //
  544. // Add new privileges
  545. //
  546. bufLen = PRIVILEGE_BUF_SIZE;
  547. ntStatus = NtAdjustPrivilegesToken(
  548. newToken, // TokenHandle
  549. FALSE, // DisableAllPrivileges
  550. pTokenPrivilege, // NewState
  551. bufLen, // bufferSize for previous state
  552. pPreviousState, // pointer to previous state info
  553. &returnLen); // numBytes required for buffer.
  555. if (ntStatus == STATUS_BUFFER_TOO_SMALL) {
  557. LocalFree(pPreviousState);
  559. bufLen = returnLen;
  561. pPreviousState = LocalAlloc(LMEM_FIXED, bufLen);
  564. ntStatus = NtAdjustPrivilegesToken(
  565. newToken, // TokenHandle
  566. FALSE, // DisableAllPrivileges
  567. pTokenPrivilege, // NewState
  568. bufLen, // bufferSize for previous state
  569. pPreviousState, // pointer to previous state info
  570. &returnLen); // numBytes required for buffer.
  572. }
  573. if (!NT_SUCCESS(ntStatus)) {
  574. LocalFree(pPreviousState);
  575. LocalFree(pTokenPrivilege);
  576. NtClose(ourToken);
  577. NtClose(newToken);
  578. return(RtlNtStatusToDosError(ntStatus));
  579. }
  581. //
  582. // Begin impersonating with the new token
  583. //
  584. ntStatus = NtSetInformationThread(
  585. NtCurrentThread(),
  586. ThreadImpersonationToken,
  587. (PVOID)&newToken,
  588. (ULONG)sizeof(HANDLE));
  590. if (!NT_SUCCESS(ntStatus)) {
  591. LocalFree(pPreviousState);
  592. LocalFree(pTokenPrivilege);
  593. NtClose(ourToken);
  594. NtClose(newToken);
  595. return(RtlNtStatusToDosError(ntStatus));
  596. }
  598. LocalFree(pPreviousState);
  599. LocalFree(pTokenPrivilege);
  600. NtClose(ourToken);
  601. NtClose(newToken);
  603. return(NO_ERROR);
  604. }
  606. DWORD
  607. RxReleasePrivilege(
  608. VOID
  609. )
  610. /*++
  612. Routine Description:
  614. This function relinquishes privileges obtained by calling NetpGetPrivilege().
  616. Arguments:
  618. none
  620. Return Value:
  622. NO_ERROR - If the operation was completely successful.
  624. Otherwise, it returns mapped return codes from the various NT
  625. functions that are called.
  628. --*/
  629. {
  630. NTSTATUS ntStatus;
  631. HANDLE NewToken;
  634. //
  635. // Revert To Self.
  636. //
  637. NewToken = NULL;
  639. ntStatus = NtSetInformationThread(
  640. NtCurrentThread(),
  641. ThreadImpersonationToken,
  642. (PVOID)&NewToken,
  643. (ULONG)sizeof(HANDLE));
  645. if ( !NT_SUCCESS(ntStatus) ) {
  646. return(RtlNtStatusToDosError(ntStatus));
  647. }
  650. return(NO_ERROR);
  651. }
  652.