archive
/
windows-xp
mirror of https://github.com/tongzx/nt5src
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Source code of Windows XP (NT5)
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
6 Commits
1 Branch
0 Tags
2.0 GiB
Tree: daad8a087a
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'daad8a087a'
${ noResults }
windows-xp/Source/XPSP1/NT/drivers/wdm/usb/usbccgp/security.c

209 lines
6.8 KiB
Raw Normal View History

Add source files
4 years ago
  1. /*
  2. *************************************************************************
  3. * File: SECURITY.C
  4. *
  5. * Module: USBCCGP.SYS
  6. * USB Common Class Generic Parent driver.
  7. *
  8. * Copyright (c) 1998 Microsoft Corporation
  9. *
  10. *
  11. * Author: ervinp
  12. *
  13. *************************************************************************
  14. */
  16. #include <wdm.h>
  17. #include <usbdi.h>
  18. #include <usbdlib.h>
  19. #include <usbioctl.h>
  21. #include "usbccgp.h"
  22. #include "security.h"
  23. #include "debug.h"
  31. NTSTATUS GetUniqueIdFromCSInterface(PPARENT_FDO_EXT parentFdoExt, PMEDIA_SERIAL_NUMBER_DATA serialNumData, ULONG serialNumLen)
  32. {
  33. PUCHAR uniqueIdBuf;
  34. NTSTATUS status;
  35. ULONG bufLen = 0;
  37. // BUGBUG - check CSM#
  39. /*
  40. * Need to allocate a locked buffer for the call to USB.
  41. */
  42. uniqueIdBuf = ALLOCPOOL(NonPagedPool, CSM1_GET_UNIQUE_ID_LENGTH);
  43. if (uniqueIdBuf){
  44. URB urb = { 0 };
  46. urb.UrbHeader.Length = sizeof(struct _URB_CONTROL_VENDOR_OR_CLASS_REQUEST);
  47. urb.UrbHeader.Function = URB_FUNCTION_CLASS_INTERFACE;
  48. urb.UrbControlVendorClassRequest.TransferFlags = USBD_TRANSFER_DIRECTION_IN;
  49. urb.UrbControlVendorClassRequest.TransferBufferLength = CSM1_GET_UNIQUE_ID_LENGTH;
  50. urb.UrbControlVendorClassRequest.TransferBuffer = uniqueIdBuf;
  51. urb.UrbControlVendorClassRequest.Request = CSM1_REQUEST_GET_UNIQUE_ID;
  52. urb.UrbControlVendorClassRequest.Value = 0;
  53. urb.UrbControlVendorClassRequest.Index = (USHORT)(parentFdoExt->CSInterfaceNumber | (parentFdoExt->CSChannelId << 8));
  55. status = SubmitUrb(parentFdoExt, &urb, TRUE, NULL, NULL);
  56. if (NT_SUCCESS(status)){
  58. bufLen = urb.UrbControlVendorClassRequest.TransferBufferLength;
  59. ASSERT(bufLen <= CSM1_GET_UNIQUE_ID_LENGTH);
  60. ASSERT(serialNumLen > 0);
  61. bufLen = MIN(bufLen, CSM1_GET_UNIQUE_ID_LENGTH);
  62. bufLen = MIN(bufLen, serialNumLen);
  64. RtlCopyMemory(serialNumData->SerialNumberData, uniqueIdBuf, bufLen);
  66. DBGDUMPBYTES("GetUniqueIdFromCSInterface - unique id:", serialNumData->SerialNumberData, bufLen);
  67. }
  68. else {
  69. DBGERR(("CSM1_REQUEST_GET_UNIQUE_ID failed with %xh.", status));
  70. }
  72. FREEPOOL(uniqueIdBuf);
  73. }
  74. else {
  75. DBGERR(("couldn't allocate unique id buf"));
  76. status = STATUS_INSUFFICIENT_RESOURCES;
  77. }
  79. serialNumData->SerialNumberLength = bufLen;
  80. serialNumData->Result = status;
  82. return status;
  83. }
  86. NTSTATUS GetMediaSerialNumber(PPARENT_FDO_EXT parentFdoExt, PIRP irp)
  87. {
  88. PIO_STACK_LOCATION irpSp = IoGetCurrentIrpStackLocation(irp);
  89. PMEDIA_SERIAL_NUMBER_DATA serialNumData;
  90. NTSTATUS status;
  91. ULONG serialNumLen;
  93. DBGVERBOSE(("*** IOCTL_STORAGE_GET_MEDIA_SERIAL_NUMBER ***"));
  95. /*
  96. * IOCTL_STORAGE_GET_MEDIA_SERIAL_NUMBER is a METHOD_BUFFERED irp.
  97. * So the kernel allocated a systemBuffer for us IF the app passed
  98. * in a non-zero buffer size. So we don't need to probe the buffer
  99. * itself, but we do need to:
  100. * 1. verify that the buffer was indeed allocated
  101. * 2. that it is large enough
  102. *
  103. * The buffer is a var-size struct; be careful to not dereference any
  104. * field until it is verified that the struct is longer than the offset
  105. * of that field.
  106. * Note that serialNumData->SerialNumberLength is the alleged size
  107. * of the serialNumData->SerialNumberData array, not of the entire structure.
  108. */
  109. serialNumData = irp->AssociatedIrp.SystemBuffer;
  110. if (serialNumData &&
  111. (irpSp->Parameters.DeviceIoControl.OutputBufferLength >= sizeof(MEDIA_SERIAL_NUMBER_DATA))) {
  113. // Serial number buffer length is the size of the output buffer minus
  114. // the size of the MEDIA_SERIAL_NUMBER_DATA structure.
  116. serialNumLen = irpSp->Parameters.DeviceIoControl.OutputBufferLength -
  117. sizeof(MEDIA_SERIAL_NUMBER_DATA);
  119. status = GetUniqueIdFromCSInterface(parentFdoExt, serialNumData, serialNumLen);
  120. irp->IoStatus.Information = FIELD_OFFSET(MEDIA_SERIAL_NUMBER_DATA, SerialNumberData) +
  121. serialNumData->SerialNumberLength;
  122. }
  123. else {
  124. DBGERR(("Bad buffer with IOCTL_STORAGE_GET_MEDIA_SERIAL_NUMBER, irp=%ph.", irp));
  125. status = STATUS_INVALID_BUFFER_SIZE;
  126. }
  128. return status;
  129. }
  132. /*
  133. * GetChannelDescForInterface
  134. *
  135. * BUGBUG - INCOMPLETE
  136. * We don't support multiple channel descriptors yet.
  137. * Eventually we'll need to return a channel id
  138. * for a particular protected interface/endpoint.
  139. */
  140. CS_CHANNEL_DESCRIPTOR *GetChannelDescForInterface(PPARENT_FDO_EXT parentFdoExt, ULONG interfaceNum)
  141. {
  142. PUSB_INTERFACE_DESCRIPTOR interfaceDesc;
  143. CS_CHANNEL_DESCRIPTOR *channelDesc = NULL;
  144. CS_METHOD_AND_VARIANT *methodAndVar;
  146. interfaceDesc = USBD_ParseConfigurationDescriptorEx(
  147. parentFdoExt->configDesc,
  148. parentFdoExt->configDesc,
  149. -1,
  150. 0, // BUGBUG - allow alternate CS interfaces ?
  151. USB_DEVICE_CLASS_CONTENT_SECURITY,
  152. -1,
  153. -1);
  154. if (interfaceDesc){
  155. PUSB_COMMON_DESCRIPTOR commonDesc = (PUSB_COMMON_DESCRIPTOR)interfaceDesc;
  157. while (POINTER_DISTANCE(commonDesc, parentFdoExt->configDesc) < parentFdoExt->configDesc->wTotalLength){
  158. if (commonDesc->bDescriptorType == CS_DESCRIPTOR_TYPE_CHANNEL){
  159. channelDesc = (CS_CHANNEL_DESCRIPTOR *)commonDesc;
  160. break;
  161. }
  162. (PUCHAR)commonDesc += commonDesc->bLength;
  163. }
  164. }
  166. if (channelDesc){
  167. /*
  168. * Make sure that this channel descriptor supports CSM1,
  169. * which is all we support right now.
  170. * BUGBUG
  171. */
  172. BOOLEAN foundSupportedCSM = FALSE;
  174. for (methodAndVar = channelDesc->methodAndVariant;
  175. POINTER_DISTANCE(methodAndVar, channelDesc) < channelDesc->bLength;
  176. methodAndVar++){
  178. if (methodAndVar->bMethod == CSM_BASIC){
  179. foundSupportedCSM = TRUE;
  180. break;
  181. }
  182. }
  184. if (!foundSupportedCSM){
  185. DBGERR(("Did not find supported CSM !"));
  186. channelDesc = NULL;
  187. }
  188. }
  190. ASSERT(channelDesc);
  191. return channelDesc;
  192. }
  195. VOID InitCSInfo(PPARENT_FDO_EXT parentFdoExt, ULONG CSIfaceNumber)
  196. {
  197. CS_CHANNEL_DESCRIPTOR *channelDesc;
  199. channelDesc = GetChannelDescForInterface(parentFdoExt, 0); // BUGBUG iface# not used because only support one channel desc
  200. if (channelDesc){
  201. parentFdoExt->CSChannelId = channelDesc->bChannelID;
  202. parentFdoExt->CSInterfaceNumber = CSIfaceNumber;
  203. parentFdoExt->haveCSInterface = TRUE;
  204. }
  205. else {
  206. ASSERT(channelDesc);
  207. }
  209. }