archive
/
windows-xp
mirror of https://github.com/tongzx/nt5src
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Source code of Windows XP (NT5)
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
6 Commits
1 Branch
0 Tags
3.8 GiB
Tree: daad8a087a
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'daad8a087a'
${ noResults }
windows-xp/Source/XPSP1/NT/base/wow64/regremap/wow64reg/wow64ipc.c

671 lines
13 KiB
Raw Normal View History

Add source files
4 years ago
  1. /*++
  3. Copyright (c) 1999-2000 Microsoft Corporation
  5. Module Name:
  7. wow64ipc.c
  9. Abstract:
  11. This module will do the communication machanism among different processes that need
  12. to interact with the wow64 services, like winlogon will notify wow64svc.
  14. Author:
  16. ATM Shafiqul Khalid (askhalid) 22-Mar-2000
  18. Revision History:
  20. --*/
  23. #include <windows.h>
  24. #include <memory.h>
  25. #include <wow64reg.h>
  26. #include <stdio.h>
  27. #include "reflectr.h"
  29. #define SHMEMSIZE 4096
  31. LPVOID lpvMem = NULL; // pointer to shared memory
  32. HANDLE hMapObject = NULL;
  34. HANDLE hWow64Event = NULL;
  35. HANDLE hWow64Mutex = NULL;
  37. LIST_OBJECT *pList = NULL;
  39. //SECURITY_DESCRIPTOR sdWow64SharedMemory;
  40. //SECURITY_ATTRIBUTES saWow64SharedMemory;
  42. BOOL
  43. Wow64CreateLock (
  44. DWORD dwOption
  45. )
  46. /*++
  48. Routine Description:
  50. Create or open Event wow64 service need to check.
  52. Arguments:
  54. dwOption -
  55. OPEN_EXISTING_SHARED_MEMORY -- shouldn't be the first process to create this.
  57. Return Value:
  59. TRUE if the function has successfully created/opened the memory.
  60. FALSE otherwise.
  62. --*/
  64. {
  65. hWow64Mutex = CreateMutex(
  66. NULL, // SD
  67. FALSE,// initial owner
  68. WOW64_SVC_REFLECTOR_MUTEX_NAME // object name
  69. );
  70. if ( hWow64Mutex == NULL )
  71. return FALSE;
  73. if ( GetLastError() != ERROR_ALREADY_EXISTS && dwOption == OPEN_EXISTING_SHARED_RESOURCES) {
  75. Wow64CloseLock ();
  76. return FALSE;
  77. }
  79. return TRUE;
  81. }
  83. VOID
  84. Wow64CloseLock ()
  86. /*++
  88. Routine Description:
  90. Close wow64 service event.
  92. Arguments:
  94. None.
  96. Return Value:
  98. None.
  100. --*/
  101. {
  102. if ( NULL != hWow64Mutex )
  103. CloseHandle ( hWow64Mutex );
  104. hWow64Mutex = NULL;
  105. }
  107. Wow64CreateEvent (
  108. DWORD dwOption,
  109. HANDLE *hEvent
  110. )
  111. /*++
  113. Routine Description:
  115. Create or open Event wow64 service need to check.
  117. Arguments:
  119. dwOption -
  120. OPEN_EXISTING_SHARED_MEMORY -- shouldn't be the first process to create this.
  122. Return Value:
  124. TRUE if the function has successfully created/opened the memory.
  125. FALSE otherwise.
  127. --*/
  129. {
  130. *hEvent = NULL;
  132. hWow64Event = CreateEvent(
  133. NULL, // SD
  134. TRUE, // reset type
  135. FALSE,// initial state
  136. WOW64_SVC_REFLECTOR_EVENT_NAME // object name
  137. );
  138. if ( hWow64Event == NULL )
  139. return FALSE;
  141. if ( GetLastError() != ERROR_ALREADY_EXISTS && dwOption == OPEN_EXISTING_SHARED_RESOURCES) {
  143. Wow64CloseEvent ();
  144. return FALSE;
  145. }
  147. *hEvent = hWow64Event;
  148. return TRUE;
  150. }
  152. VOID
  153. Wow64CloseEvent ()
  155. /*++
  157. Routine Description:
  159. Close wow64 service event.
  161. Arguments:
  163. None.
  165. Return Value:
  167. None.
  169. --*/
  170. {
  171. if ( NULL != hWow64Event )
  172. CloseHandle ( hWow64Event );
  173. hWow64Event = NULL;
  174. }
  176. BOOL
  177. LockSharedMemory ()
  178. {
  179. DWORD Ret;
  180. Ret = WaitForSingleObject( hWow64Mutex, 1000*5*60); // 5 min is good enough
  182. //
  183. // now you can access shared memory
  184. //
  185. //Log information if error occur
  187. if ( Ret == WAIT_OBJECT_0 || Ret == WAIT_ABANDONED )
  188. return TRUE;
  190. //
  191. // check for abandaned case
  192. //
  194. return FALSE;
  196. }
  198. BOOL
  199. UnLockSharedMemory ()
  200. {
  201. if ( ReleaseMutex ( hWow64Mutex ) )
  202. return TRUE;
  204. return FALSE;
  205. }
  207. BOOL
  208. CreateSharedMemory (
  209. DWORD dwOption
  210. )
  211. /*++
  213. Routine Description:
  215. Create or open shared memory, used by different process.
  217. Arguments:
  219. dwOption -
  220. OPEN_EXISTING_SHARED_MEMORY -- shouldn't be the first process to create this.
  222. Return Value:
  224. TRUE if the function has successfully created/opened the memory.
  225. FALSE otherwise.
  227. --*/
  229. {
  230. BOOL fInit;
  233. //if (!InitializeSecurityDescriptor( &sdWow64SharedMemory, SECURITY_DESCRIPTOR_REVISION ))
  234. // return FALSE;
  236. // saWow64SharedMemory.nLength = sizeof ( SECURITY_ATTRIBUTES );
  237. // saWow64SharedMemory.bInheritHandle = TRUE;
  238. // saWow64SharedMemory.lpSecurityDescriptor = &sdWow64SharedMemory;
  245. // Create a named file mapping object.
  247. hMapObject = CreateFileMapping(
  248. INVALID_HANDLE_VALUE, // use paging file
  249. NULL, //&saWow64SharedMemory, // no security attributes
  250. PAGE_READWRITE, // read/write access
  251. 0, // size: high 32-bits
  252. SHMEMSIZE, // size: low 32-bits
  253. SHRED_MEMORY_NAME ); // name of map object
  255. if (hMapObject == NULL)
  256. return FALSE;
  258. // The first process to attach initializes memory.
  260. fInit = (GetLastError() != ERROR_ALREADY_EXISTS);
  262. if (fInit && dwOption == OPEN_EXISTING_SHARED_RESOURCES ) {
  264. CloseSharedMemory ();
  265. return FALSE; // no shared memory exist
  266. }
  268. // Get a pointer to the file-mapped shared memory.
  270. pList = (LIST_OBJECT *) MapViewOfFile(
  271. hMapObject, // object to map view of
  272. FILE_MAP_WRITE, // read/write access
  273. 0, // high offset: map from
  274. 0, // low offset: beginning
  275. 0); // default: map entire file
  276. if (pList == NULL)
  277. return FALSE;
  279. // Initialize memory if this is the first process.
  281. if (fInit) {
  282. memset( ( PBYTE )pList, '\0', SHMEMSIZE);
  283. pList->MaxCount = ( SHMEMSIZE - sizeof ( LIST_OBJECT ) ) / (LIST_NAME_LEN*sizeof (WCHAR));
  285. }
  287. //
  288. // Also initialize all the locking and synchronization object
  289. //
  291. if ( !Wow64CreateLock ( dwOption ) ) {
  292. CloseSharedMemory ();
  293. return FALSE;
  294. }
  296. return TRUE;
  297. }
  299. VOID
  300. CloseSharedMemory ()
  301. {
  303. if (pList != NULL )
  304. UnmapViewOfFile(pList);
  305. pList = NULL;
  307. // Close the process's handle to the file-mapping object.
  309. if ( hMapObject!= NULL )
  310. CloseHandle(hMapObject);
  311. hMapObject = NULL;
  313. Wow64CloseLock ();
  315. }
  317. // initially try to transfer only one object
  319. BOOL
  320. EnQueueObject (
  321. PWCHAR pObjName,
  322. WCHAR Type
  323. )
  324. /*++
  326. Routine Description:
  328. Put an object name in the queue.
  330. Arguments:
  332. pObjName - Name of the object to put in the quque.
  333. Type - L: Loading hive
  334. U: Unloading Hive
  336. Return Value:
  338. TRUE if the function has successfully created/opened the memory.
  339. FALSE otherwise.
  341. --*/
  342. {
  343. // lpvMem check if this value is NULL
  344. // wait to get the lock on shared memory
  346. DWORD Len;
  347. DWORD i;
  349. if ( pList == NULL )
  350. return FALSE;
  352. Len = wcslen (pObjName);
  353. if (Len == 0 || Len > 256 )
  354. return FALSE;
  356. if (!LockSharedMemory ())
  357. return FALSE;
  359. if ( pList->Count == pList->MaxCount ) {
  360. UnLockSharedMemory ();
  361. return FALSE;
  362. }
  364. for ( i=0; i<pList->MaxCount; i++) {
  365. if (pList->Name[i][0] == UNICODE_NULL ) break;
  366. }
  368. if ( i == pList->MaxCount ) {
  369. UnLockSharedMemory ();
  370. return FALSE;
  371. }
  374. wcscpy ( pList->Name[i], pObjName);
  375. pList->Count++;
  376. pList->Name[i][LIST_NAME_LEN-1] = Type;
  378. UnLockSharedMemory ();
  379. SignalWow64Svc ();
  381. // write data
  383. // release data
  384. return TRUE;
  385. }
  387. BOOL
  388. DeQueueObject (
  389. PWCHAR pObjName,
  390. PWCHAR Type
  391. )
  392. /*++
  394. Routine Description:
  396. Get a name of object from the queue.
  398. Arguments:
  400. pObjName - Name of the object that receive the name.
  401. Type - L: Loading hive
  402. U: Unloading Hive
  404. Return Value:
  406. TRUE if the function has successfully created/opened the memory.
  407. FALSE otherwise.
  409. --*/
  410. {
  411. // lpvMem check if this value is NULL
  412. // wait to get the lock on shared memory
  414. DWORD Len;
  415. DWORD i;
  417. if ( pList == NULL )
  418. return FALSE;
  421. if (!LockSharedMemory ())
  422. return FALSE;
  424. if ( pList->Count == 0 ) {
  425. UnLockSharedMemory ();
  426. return FALSE;
  427. }
  429. for ( i=0; i < pList->MaxCount; i++) {
  430. if (pList->Name[i][0] != UNICODE_NULL ) break;
  431. }
  433. if ( i == pList->MaxCount ) {
  434. UnLockSharedMemory ();
  435. return FALSE;
  436. }
  438. wcscpy ( pObjName, pList->Name[i]);
  439. pList->Name[i][0] = UNICODE_NULL;
  441. pList->Count--;
  442. *Type = pList->Name[i][LIST_NAME_LEN-1];
  444. UnLockSharedMemory ();
  445. //SignalWow64Svc ();
  447. // write data
  449. // release data
  450. return TRUE;
  451. }
  453. //signal wowservice to receive the data.
  455. BOOL
  456. SignalWow64Svc ()
  457. {
  458. //this might be a simple event trigger or set event
  460. if ( SetEvent ( hWow64Event ) )
  461. return TRUE;
  463. return FALSE;
  465. }
  467. BOOL
  468. CheckAdminPriviledge ()
  469. /*++
  471. Routine Description:
  473. Check if the running thread has admin priviledge.
  475. Arguments:
  477. None.
  479. Return Value:
  481. TRUE if the calling thread has admin proviledge.
  482. FALSE otherwise.
  484. --*/
  485. {
  487. BOOL bRetCode = FALSE;
  488. /*
  489. HANDLE TokenHandle;
  490. BOOL b;
  491. DWORD ReturnLength;
  493. PTOKEN_USER TokenInfo;
  495. //
  496. // If we're impersonating, use the thread token, otherwise
  497. // use the process token.
  498. //
  500. PTOKEN_USER Result = NULL;
  502. b = OpenThreadToken(
  503. GetCurrentThread(),
  504. TOKEN_QUERY,
  505. FALSE,
  506. &TokenHandle
  507. );
  509. if (!b) {
  511. if (GetLastError() == ERROR_NO_TOKEN) {
  513. //
  514. // We're not impersonating, try the process token
  515. //
  517. b = OpenProcessToken(
  518. GetCurrentProcess(),
  519. TOKEN_QUERY,
  520. &TokenHandle
  521. );
  523. if (!b) {
  525. return FALSE;
  526. }
  528. } else {
  530. //
  531. // We failed for some unexpected reason, return NULL and
  532. // let the caller figure it out if he so chooses.
  533. //
  535. return FALSE;
  536. }
  537. }
  539. ReturnLength = GetSidLengthRequired( SID_MAX_SUB_AUTHORITIES ) + sizeof( TOKEN_USER );
  541. TokenInfo = (PTOKEN_USER)malloc( ReturnLength );
  543. if (TokenInfo != NULL) {
  545. b = GetTokenInformation (
  546. TokenHandle,
  547. TokenGroups,
  548. TokenInfo,
  549. ReturnLength,
  550. &ReturnLength
  551. );
  553. if (b) {
  555. Result = TokenInfo;
  557. } else {
  559. if (GetLastError() == ERROR_INSUFFICIENT_BUFFER) {
  561. //
  562. // Reallocate TokenInfo
  563. //
  565. free( TokenInfo );
  567. TokenInfo = (PTOKEN_USER)malloc( ReturnLength );
  569. if (TokenInfo != NULL) {
  571. b = GetTokenInformation (
  572. TokenHandle,
  573. TokenGroups,
  574. TokenInfo,
  575. ReturnLength,
  576. &ReturnLength
  577. );
  579. if (b) {
  581. Result = TokenInfo;
  582. }
  584. } else {
  586. SetLastError( ERROR_NOT_ENOUGH_MEMORY );
  587. return FALSE;
  588. }
  589. }
  590. }
  592. } else {
  594. SetLastError( ERROR_NOT_ENOUGH_MEMORY );
  595. return FALSE;
  596. }
  599. DWORD dwSidSize = 0;
  600. SID_NAME_USE SidType;
  601. DWORD strSize = 80;
  602. WCHAR str [80];
  603. SID_NAME_USE sidType;
  604. BOOL bProceede = TRUE;
  606. DWORD dwRet = LookupAccountName (
  607. NULL,
  608. L"Administrators",
  609. NULL,
  610. &dwSidSize,
  611. str,
  612. &strSize,
  613. &sidType );
  615. if ( dwSidSize == 0)
  616. if ( !dwRet ) {
  617. cBase.PrintErrorWin32 ( GetLastError () );
  618. bProceede = FALSE;
  620. }
  622. PSID psid = NULL;
  624. if ( bProceede )
  625. if ( dwSidSize ) {
  626. psid = (PSID) GlobalAlloc ( GPTR, dwSidSize );
  628. if ( psid == NULL )
  629. bProceede = FALSE;
  630. else {
  631. strSize = 80;
  632. dwRet = LookupAccountName (
  633. NULL,
  634. L"Administrators",
  635. psid,
  636. &dwSidSize,
  637. str,
  638. &strSize,
  639. &sidType );
  640. if ( ! dwRet )
  641. bProceede = FALSE;
  642. }
  643. }
  645. //now check
  648. if ( Result == NULL )
  649. bProceede = FALSE;
  652. TOKEN_GROUPS *pGroups = ( TOKEN_GROUPS *)Result;
  655. if ( bProceede )
  656. for ( int i=0; i < pGroups->GroupCount; i++ ) {
  657. if ( EqualSid ( pGroups->Groups [i].Sid, psid ) ){
  658. bRetCode = TRUE;
  659. break;
  660. }
  661. };
  663. if ( psid != NULL )
  664. GlobalFree ( psid );
  666. if ( Result != NULL )
  667. free ( Result );
  669. */
  670. return bRetCode;
  671. }