archive
/
windows-xp
mirror of https://github.com/tongzx/nt5src
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Source code of Windows XP (NT5)
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
6 Commits
1 Branch
0 Tags
2.0 GiB
Tree: daad8a087a
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'daad8a087a'
${ noResults }
windows-xp/Source/XPSP1/NT/base/win32/fusion/sxs/sxssfcscan.cpp

373 lines
11 KiB
Raw Normal View History

Add source files
4 years ago
  1. #include "stdinc.h"
  2. #include "windows.h"
  3. #include "sxsapi.h"
  4. #include "sxsprotect.h"
  5. #include "sxssfcscan.h"
  6. #include "wintrust.h"
  7. #include "softpub.h"
  8. #include "strongname.h"
  9. #include "recover.h"
  11. static GUID WintrustVerifyProviderV2 = WINTRUST_ACTION_GENERIC_VERIFY_V2;
  15. BOOL
  16. SxspValidateEntireAssembly(
  17. DWORD dwFlags,
  18. const CAssemblyRecoveryInfo &RecoverInfo,
  19. DWORD &dwResult
  20. )
  21. {
  22. BOOL bSuccess = FALSE;
  23. const CSecurityMetaData &rSecurityData = RecoverInfo.GetSecurityInformation();
  24. FN_TRACE_WIN32(bSuccess);
  26. #define CHECKSHOULDSTOPFAIL { if (dwFlags & SXS_VALIDATE_ASM_FLAG_MODE_STOP_ON_FAIL) { bSuccess = TRUE; goto Exit; } }
  27. #define ADDFLAG(result, test, flag) { if (test) { (result) |= (flag); } else CHECKSHOULDSTOPFAIL }
  29. ManifestValidationResult ManifestValidity;
  30. CSecurityMetaData SecurityMetaData;
  31. CStringBuffer sbManifestPath;
  33. dwResult = 0;
  35. if (dwFlags == 0)
  36. {
  37. dwFlags = SXS_VALIDATE_ASM_FLAG_CHECK_EVERYTHING;
  38. dwFlags |= (SXS_VALIDATE_ASM_FLAG_MODE_STOP_ON_FAIL);
  39. }
  41. IFINVALID_FLAGS_EXIT_WIN32(dwFlags,
  42. SXS_VALIDATE_ASM_FLAG_CHECK_CATALOG |
  43. SXS_VALIDATE_ASM_FLAG_CHECK_FILES |
  44. SXS_VALIDATE_ASM_FLAG_CHECK_STRONGNAME |
  45. SXS_VALIDATE_ASM_FLAG_CHECK_CAT_STRONGNAME |
  46. SXS_VALIDATE_ASM_FLAG_MODE_STOP_ON_FAIL);
  48. //
  49. // Asking us to check the catalog when there's no catalog on the assembly
  50. // is a Bad Thing. Perhaps this should just return TRUE with a missing catalog?
  51. //
  52. PARAMETER_CHECK(dwFlags & SXS_VALIDATE_ASM_FLAG_CHECK_CATALOG);
  53. PARAMETER_CHECK(RecoverInfo.GetHasCatalog());
  55. #if DBG
  56. ::FusionpDbgPrintEx(
  57. FUSION_DBG_LEVEL_WFP,
  58. "SXS.DLL: %s() - Beginning protection scan of %ls, flags 0x%08x\n",
  59. __FUNCTION__,
  60. static_cast<PCWSTR>(RecoverInfo.GetAssemblyDirectoryName()),
  61. dwFlags);
  62. #endif
  64. IFW32FALSE_EXIT(::SxspResolveAssemblyManifestPath(RecoverInfo.GetAssemblyDirectoryName(), sbManifestPath));
  66. //
  67. // If we're checking the catalog, then do it. If the catalog is bad or
  68. // otherwise doesn't match the actual assembly, then we need to mark
  69. // ourselves as successful, then exit.
  70. //
  71. if (dwFlags & SXS_VALIDATE_ASM_FLAG_CHECK_CATALOG)
  72. {
  73. IFW32FALSE_EXIT(::SxspValidateManifestAgainstCatalog(
  74. sbManifestPath,
  75. ManifestValidity,
  76. 0));
  78. #if DBG
  79. FusionpDbgPrintEx(
  80. FUSION_DBG_LEVEL_WFP,
  81. "SXS.DLL: Manifest Validity = %ls\n",
  82. SxspManifestValidationResultToString(ManifestValidity));
  83. #endif
  85. ADDFLAG(
  86. dwResult,
  87. ManifestValidity == ManifestValidate_IsIntact,
  88. SXS_VALIDATE_ASM_FLAG_VALID_CATALOG);
  89. }
  92. //TODO: Problems - make sure that we validate the manifest against what's in the
  93. // registry. Maybe we need a special mode of incorporating assemblies (over a manifest)
  94. // that will just fill out the security data and nothing else...
  96. //
  97. // Validate the strong name of the assembly first.
  98. //
  99. if (dwFlags & SXS_VALIDATE_ASM_FLAG_CHECK_STRONGNAME)
  100. {
  101. //
  102. // JW 3/19/2001 - Public keys are NO LONGER IN THE BUILD, and as such
  103. // this check is moot.
  104. //
  105. ADDFLAG(dwResult, TRUE, SXS_VALIDATE_ASM_FLAG_VALID_STRONGNAME);
  106. }
  108. //
  109. // Let's open the catalog and scour through it certificate-wise
  110. // looking for a strong name that matches up.
  111. //
  112. if (dwFlags & SXS_VALIDATE_ASM_FLAG_CHECK_CAT_STRONGNAME)
  113. {
  114. CStringBuffer sbCatalogName;
  115. CSmallStringBuffer sbTheorheticalStrongName;
  116. const CFusionByteArray &rbaSignerPublicKey = rSecurityData.GetSignerPublicKeyTokenBits();
  117. CPublicKeyInformation PublicKeyInfo;
  118. BOOL bStrongNameFoundInCatalog;
  120. IFW32FALSE_EXIT(sbCatalogName.Win32Assign(sbManifestPath));
  121. IFW32FALSE_EXIT(sbCatalogName.Win32ChangePathExtension(
  122. FILE_EXTENSION_CATALOG,
  123. FILE_EXTENSION_CATALOG_CCH,
  124. eAddIfNoExtension));
  126. if (!PublicKeyInfo.Initialize(sbCatalogName))
  127. {
  128. const DWORD dwLastError = ::FusionpGetLastWin32Error();
  129. if ((dwLastError != ERROR_PATH_NOT_FOUND) &&
  130. (dwLastError != ERROR_FILE_NOT_FOUND))
  131. goto Exit;
  132. }
  134. IFW32FALSE_EXIT(
  135. ::SxspHashBytesToString(
  136. rbaSignerPublicKey.GetArrayPtr(),
  137. rbaSignerPublicKey.GetSize(),
  138. sbTheorheticalStrongName));
  140. IFW32FALSE_EXIT(
  141. PublicKeyInfo.DoesStrongNameMatchSigner(
  142. sbTheorheticalStrongName,
  143. bStrongNameFoundInCatalog));
  145. ADDFLAG(dwResult, bStrongNameFoundInCatalog, SXS_VALIDATE_ASM_FLAG_VALID_CAT_STRONGNAME);
  146. }
  148. //
  149. // Now, scan through all the files that are listed in the manifest and
  150. // ensure that they're all OK.
  151. //
  152. if (dwFlags & SXS_VALIDATE_ASM_FLAG_CHECK_FILES)
  153. {
  154. CStringBuffer sbTempScanPath;
  155. CStringBuffer sbAsmRootDir;
  156. const CBaseStringBuffer &sbAssemblyName = RecoverInfo.GetAssemblyDirectoryName();
  157. CFileInformationTableIter ContentTableIter(const_cast<CFileInformationTable&>(rSecurityData.GetFileDataTable()));
  159. HashValidateResult hvResult;
  160. BOOL bAllFilesMatch = TRUE;
  161. BOOL fTempBoolean;
  163. IFW32FALSE_EXIT(::SxspGetAssemblyRootDirectory(sbAsmRootDir));
  165. for (ContentTableIter.Reset();
  166. ContentTableIter.More();
  167. ContentTableIter.Next())
  168. {
  169. //
  170. // Cobble together a path to scan for the file in, based on the
  171. // assembly root directory, the 'name' of the assembly (note:
  172. // we can't use this to go backwards to get an identity,
  173. // unfortunately), and the name of the file to be validated.
  174. //
  175. PCWSTR wsString = ContentTableIter.GetKey();
  176. CMetaDataFileElement &HashEntry = ContentTableIter.GetValue();
  178. IFW32FALSE_EXIT(sbTempScanPath.Win32Format( L"%ls\\%ls\\%ls",
  179. static_cast<PCWSTR>(sbAsmRootDir),
  180. static_cast<PCWSTR>(sbAssemblyName),
  181. wsString));
  183. IFW32FALSE_EXIT_UNLESS( ::SxspValidateAllFileHashes(
  184. HashEntry,
  185. sbTempScanPath,
  186. hvResult ),
  187. FILE_OR_PATH_NOT_FOUND(::FusionpGetLastWin32Error()),
  188. fTempBoolean );
  190. if ( ( hvResult != HashValidate_Matches ) || ( fTempBoolean ) )
  191. {
  192. bAllFilesMatch = FALSE;
  193. }
  195. }
  197. ADDFLAG(dwResult, bAllFilesMatch, SXS_VALIDATE_ASM_FLAG_VALID_FILES);
  198. }
  200. //
  201. // Phew - should be done doing everything the user wanted us to.
  202. //
  203. bSuccess = TRUE;
  204. Exit:
  205. #if DBG
  206. FusionpDbgPrintEx(
  207. FUSION_DBG_LEVEL_WFP,
  208. "SXS.DLL: Done validating, result = 0x%08x, success = %d\n",
  209. dwResult,
  210. bSuccess);
  211. #endif
  213. return bSuccess;
  215. #undef CHECKSHOULDSTOPFAIL
  216. }
  220. //
  221. // Single-shot scanning
  222. //
  223. BOOL
  224. SxsProtectionPerformScanNowNoSEH(
  225. HWND hwProgressWindow,
  226. BOOL bValidate,
  227. BOOL bUIAllowed
  228. )
  229. {
  230. BOOL bSuccess = TRUE;
  231. FN_TRACE_WIN32(bSuccess);
  233. CFusionRegKey hkInstallRoot;
  234. WCHAR wcKeyNameBuffer[MAX_PATH];
  235. DWORD cchKeyName;
  236. ULONG ulRegOp;
  237. DWORD dwKeyIndex;
  239. CStringBuffer sbTemp;
  240. CStringBuffer sbAssemblyDirectory, sbManifestPath;
  242. //
  243. // If we're scanning, then we don't want to bother sxs-sfc with changes,
  244. // now do we?
  245. //
  246. // REVIEW: Handy way to get around sfc-sxs... start a series of scans, and
  247. // insert 'bad' files into assemblies while we're scanning.
  248. //
  249. SxsProtectionEnableProcessing(FALSE);
  251. bSuccess = TRUE;
  253. IFW32FALSE_EXIT(::SxspOpenAssemblyInstallationKey( 0, KEY_READ, hkInstallRoot ));
  255. dwKeyIndex = 0;
  256. while (true)
  257. {
  258. ulRegOp = ::RegEnumKeyExW(
  259. hkInstallRoot,
  260. dwKeyIndex++,
  261. wcKeyNameBuffer,
  262. &(cchKeyName = NUMBER_OF(wcKeyNameBuffer)),
  263. NULL,
  264. NULL,
  265. NULL,
  266. NULL);
  268. ::FusionpSetLastWin32Error(ulRegOp);
  270. if (ulRegOp == ERROR_NO_MORE_ITEMS)
  271. break;
  272. else if (ulRegOp != ERROR_SUCCESS)
  273. ORIGINATE_WIN32_FAILURE_AND_EXIT(RegEnumKeyExW, ulRegOp);
  274. else
  275. {
  276. CAssemblyRecoveryInfo ri;
  277. bool fHasAssociatedAssembly;
  279. IFW32FALSE_EXIT(sbTemp.Win32Assign(wcKeyNameBuffer, cchKeyName));
  280. IFW32FALSE_EXIT(ri.AssociateWithAssembly(sbTemp, fHasAssociatedAssembly));
  282. if (!fHasAssociatedAssembly)
  283. {
  284. ::FusionpDbgPrintEx(
  285. FUSION_DBG_LEVEL_WFP,
  286. "SXS.DLL: %s() - We found the assembly %ls in the registry, but were not able to associate it with an assembly\n",
  287. __FUNCTION__,
  288. static_cast<PCWSTR>(sbTemp));
  289. }
  290. else if (!ri.GetHasCatalog())
  291. {
  292. ::FusionpDbgPrintEx(
  293. FUSION_DBG_LEVEL_WFP,
  294. "SXS.DLL: %s() - Assembly %ls in registry, no catalog, not validating.\n",
  295. __FUNCTION__,
  296. static_cast<PCWSTR>(sbTemp));
  297. }
  298. else
  299. {
  300. DWORD dwValidateMode, dwResult;
  301. SxsRecoveryResult RecoverResult;
  303. dwValidateMode = SXS_VALIDATE_ASM_FLAG_CHECK_EVERYTHING;
  305. IFW32FALSE_EXIT(::SxspValidateEntireAssembly(
  306. dwValidateMode,
  307. ri,
  308. dwResult));
  310. if (dwResult != SXS_VALIDATE_ASM_FLAG_VALID_PERFECT)
  311. {
  312. #if DBG
  313. ::FusionpDbgPrintEx(
  314. FUSION_DBG_LEVEL_WFP | FUSION_DBG_LEVEL_ERROR,
  315. "SXS.DLL: %s() - Scan of %ls failed one or more, flagset 0x%08x\n",
  316. __FUNCTION__,
  317. static_cast<PCWSTR>(sbTemp),
  318. dwResult);
  319. #endif
  321. IFW32FALSE_EXIT(
  322. ::SxspRecoverAssembly(
  323. ri,
  324. NULL,
  325. RecoverResult));
  327. #if DBG
  328. if (RecoverResult != Recover_OK)
  329. {
  330. FusionpDbgPrintEx(
  331. FUSION_DBG_LEVEL_WFP | FUSION_DBG_LEVEL_ERROR,
  332. "SXS.DLL: %s() - Reinstallation of assembly %ls failed, status %ls\n",
  333. static_cast<PCWSTR>(sbTemp),
  334. SxspRecoveryResultToString(RecoverResult));
  335. }
  336. #endif
  337. }
  339. }
  340. }
  341. }
  343. bSuccess = TRUE;
  344. Exit:
  345. return bSuccess;
  346. }
  348. BOOL
  349. SxsProtectionPerformScanNow(
  350. HWND hwProgressWindow,
  351. BOOL bValidate,
  352. BOOL bUIAllowed
  353. )
  354. {
  355. BOOL bSuccess = TRUE;
  356. __try
  357. {
  358. bSuccess = ::SxsProtectionPerformScanNowNoSEH(hwProgressWindow, bValidate, bUIAllowed);
  359. }
  360. __except(SXSP_EXCEPTION_FILTER())
  361. {
  362. ::FusionpDbgPrintEx(
  363. FUSION_DBG_LEVEL_WFP | FUSION_DBG_LEVEL_ERROR,
  364. "SXS.DLL: " __FUNCTION__ "(): Aborting scan, returning false - Exception!");
  365. }
  367. //
  368. // Always reenable sfc notifications!
  369. //
  370. ::SxsProtectionEnableProcessing(TRUE);
  372. return bSuccess;
  373. }