archive
/
windows-xp
mirror of https://github.com/tongzx/nt5src
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Source code of Windows XP (NT5)
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
6 Commits
1 Branch
0 Tags
2.0 GiB
Tree: daad8a087a
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'daad8a087a'
${ noResults }
windows-xp/Source/XPSP1/NT/ds/security/protocols/digest/cred.cxx

612 lines
17 KiB
Raw Normal View History

Add source files
4 years ago
  1. //+-----------------------------------------------------------------------
  2. //
  3. // Microsoft Windows
  4. //
  5. // Copyright (c) Microsoft Corporation 2000
  6. //
  7. // File: creds.cxx
  8. //
  9. // Contents: Credential functions:
  10. //
  11. //
  12. // History: KDamour 15Mar00 Stolen from NTLM
  13. //
  14. //------------------------------------------------------------------------
  15. #include "global.h"
  17. //
  18. // Crit Sect to protect various globals in this module.
  19. //
  21. RTL_CRITICAL_SECTION l_CredentialCritSect;
  23. LIST_ENTRY l_CredentialList;
  25. // Simple variable to make sure that the package was initialize
  26. BOOL g_bCredentialsInitialized = FALSE;
  30. //+--------------------------------------------------------------------
  31. //
  32. // Function: CredHandlerInit
  33. //
  34. // Synopsis: Initializes the credential manager package
  35. //
  36. // Arguments: none
  37. //
  38. // Returns: NTSTATUS
  39. //
  40. // Notes: Called by SpInitialize
  41. //
  42. //---------------------------------------------------------------------
  43. NTSTATUS
  44. CredHandlerInit(VOID)
  45. {
  46. NTSTATUS Status = STATUS_SUCCESS;
  48. //
  49. // Initialize the Credential list to be empty.
  50. //
  52. Status = RtlInitializeCriticalSection(&l_CredentialCritSect);
  53. if (!NT_SUCCESS(Status))
  54. {
  55. DebugLog((DEB_ERROR, "CredHandlerInit: Failed to initialize critsec 0x%x\n", Status));
  56. goto CleanUp;
  57. }
  60. InitializeListHead( &l_CredentialList );
  62. // Simple variable test to make sure all initialized;
  63. g_bCredentialsInitialized = TRUE;
  65. CleanUp:
  67. return Status;
  68. }
  70. NTSTATUS
  71. CredHandlerInsertCred(
  72. IN PDIGEST_CREDENTIAL pDigestCred
  73. )
  74. {
  75. RtlEnterCriticalSection( &l_CredentialCritSect );
  76. pDigestCred->Unlinked = FALSE;
  77. InsertHeadList( &l_CredentialList, &pDigestCred->Next );
  78. RtlLeaveCriticalSection( &l_CredentialCritSect );
  80. return STATUS_SUCCESS;
  81. }
  84. // Initialize the Credential Structure
  85. NTSTATUS
  86. CredentialInit(
  87. IN PDIGEST_CREDENTIAL pDigestCred)
  88. {
  89. NTSTATUS Status = STATUS_SUCCESS;
  90. ASSERT(pDigestCred);
  92. if (!pDigestCred)
  93. {
  94. return STATUS_INVALID_PARAMETER;
  95. }
  97. ZeroMemory(pDigestCred, sizeof(DIGEST_CREDENTIAL));
  98. pDigestCred->TimeCreated = time(NULL);
  99. pDigestCred->Unlinked = TRUE;
  100. pDigestCred->CredentialHandle = (ULONG_PTR)pDigestCred;
  101. pDigestCred->lReferences = 0;
  103. return(Status);
  104. }
  107. // Free up memory utilized by Credential the Credential Structure
  108. NTSTATUS
  109. CredentialFree(
  110. IN PDIGEST_CREDENTIAL pDigestCred)
  111. {
  112. NTSTATUS Status = STATUS_SUCCESS;
  113. ASSERT(pDigestCred);
  114. ASSERT(0 == pDigestCred->lReferences);
  116. UnicodeStringFree(&(pDigestCred->ustrAccountName));
  117. UnicodeStringFree(&(pDigestCred->ustrDownlevelName));
  118. UnicodeStringFree(&(pDigestCred->ustrDomainName));
  120. // Erase any password information
  121. if (((pDigestCred->ustrPassword).Length) &&
  122. ((pDigestCred->ustrPassword).Buffer))
  123. {
  124. ZeroMemory((pDigestCred->ustrPassword).Buffer, (pDigestCred->ustrPassword).MaximumLength);
  125. }
  126. UnicodeStringFree(&(pDigestCred->ustrPassword));
  127. UnicodeStringFree(&(pDigestCred->ustrDnsDomainName));
  128. UnicodeStringFree(&(pDigestCred->ustrUpn));
  129. UnicodeStringFree(&(pDigestCred->ustrLogonServer));
  131. DigestFreeMemory(pDigestCred);
  133. return(Status);
  134. }
  138. /*++
  140. Routine Description:
  142. This routine checks to see if the Credential Handle is from a currently
  143. active client, and references the Credential if it is valid.
  145. The caller can request that the Credential be dereferenced only.
  147. For a client's Credential to be valid, the Credential value
  148. must be on our list of active Credentials.
  151. Arguments:
  153. CredentialHandle - Points to the CredentialHandle of the Credential
  154. to be referenced.
  156. DereferenceCredential - This boolean value indicates whether the caller
  157. wants the logon process's Credential to be referenced (FALSE) or
  158. decremented (TRUE)
  161. Return Value:
  163. NULL - the Credential was not found.
  165. Otherwise - returns a pointer to the referenced credential.
  167. --*/
  169. NTSTATUS
  170. CredHandlerHandleToPtr(
  171. IN ULONG_PTR CredentialHandle,
  172. IN BOOLEAN DereferenceCredential,
  173. OUT PDIGEST_CREDENTIAL * UserCredential
  174. )
  175. {
  176. PLIST_ENTRY ListEntry = NULL;
  177. PDIGEST_CREDENTIAL Credential = NULL;
  178. NTSTATUS Status = STATUS_SUCCESS;
  179. SECPKG_CLIENT_INFO ClientInfo;
  180. SECPKG_CALL_INFO CallInfo;
  182. // LONG lDereferenceCount = 1;
  183. ULONG ulDereferenceCount = 1;
  184. LONG lReferences = 0;
  186. DebugLog((DEB_TRACE_FUNC, "CredHandlerHandleToPtr: Entering Credential 0x%x\n", CredentialHandle));
  188. // set default output
  189. ASSERT(UserCredential);
  190. *UserCredential = NULL ;
  193. ZeroMemory( &CallInfo, sizeof(CallInfo) );
  194. ZeroMemory( &ClientInfo, sizeof(ClientInfo) );
  197. if(g_LsaFunctions->GetCallInfo(&CallInfo))
  198. {
  199. ulDereferenceCount = CallInfo.CallCount;
  200. DebugLog((DEB_TRACE, "CredHandlerHandleToPtr: CallCount 0x%x\n", CallInfo.CallCount));
  201. DebugLog((DEB_TRACE, "CredHandlerHandleToPtr: Attributes 0x%x\n", CallInfo.Attributes));
  202. DebugLog((DEB_TRACE, "CredHandlerHandleToPtr: PID %d Thread %d\n", CallInfo.ProcessId, CallInfo.ThreadId));
  203. }
  204. else
  205. {
  206. ZeroMemory( &CallInfo, sizeof(CallInfo) );
  207. }
  209. Status = g_LsaFunctions->GetClientInfo(&ClientInfo);
  211. if(!NT_SUCCESS(Status))
  212. {
  213. //
  214. // this call can fail during a cleanup call. so ignore that for now,
  215. // and check for cleanup disposition.
  216. //
  218. if ((CallInfo.Attributes & SECPKG_CALL_CLEANUP) != 0)
  219. {
  220. Status = STATUS_SUCCESS;
  221. RtlZeroMemory(
  222. &ClientInfo,
  223. sizeof(SECPKG_CLIENT_INFO)
  224. );
  225. ClientInfo.HasTcbPrivilege = TRUE;
  226. ClientInfo.ProcessID = CallInfo.ProcessId;
  227. }
  229. if( !NT_SUCCESS( Status ) )
  230. {
  231. DebugLog(( DEB_ERROR, "CredHandlerHandleToPtr: GetClientInfo returned 0x%lx\n", Status));
  232. return( Status );
  233. }
  234. }
  236. if( CallInfo.Attributes & SECPKG_CALL_CLEANUP )
  237. {
  238. DebugLog(( DEB_TRACE, "CredHandlerHandleToPtr: Cleanup Called pid: 0x%lx handle: %p refcount: %lu\n",
  239. ClientInfo.ProcessID, CredentialHandle, ulDereferenceCount));
  240. }
  242. //
  243. // Acquire exclusive access to the Credential list
  244. //
  246. RtlEnterCriticalSection( &l_CredentialCritSect );
  249. //
  250. // Now walk the list of Credentials looking for a match.
  251. //
  253. for ( ListEntry = l_CredentialList.Flink;
  254. ListEntry != &l_CredentialList;
  255. ListEntry = ListEntry->Flink )
  256. {
  258. Credential = CONTAINING_RECORD( ListEntry, DIGEST_CREDENTIAL, Next );
  261. //
  262. // Found a match ... reference this Credential
  263. // (if the Credential is being removed, we would increment
  264. // and then decrement the reference, so don't bother doing
  265. // either - since they cancel each other out).
  266. //
  268. if (( Credential == (PDIGEST_CREDENTIAL) CredentialHandle))
  269. {
  271. // Make sure we have the privilege of accessing
  272. // this handle
  274. if (!ClientInfo.HasTcbPrivilege &&
  275. (Credential->ClientProcessID != ClientInfo.ProcessID)
  276. )
  277. {
  278. DebugLog((DEB_ERROR, "CredHandlerHandleToPtr: ProcessIDs are different. Access forbidden.\n"));
  279. break;
  280. }
  282. if (!DereferenceCredential)
  283. {
  284. lReferences = InterlockedIncrement(&Credential->lReferences);
  286. DebugLog((DEB_TRACE, "CredHandlerHandleToPtr: Incremented ReferenceCount %ld\n", lReferences));
  287. }
  288. else
  289. {
  290. DebugLog((DEB_TRACE, "CredHandlerHandleToPtr: Derefencing credential\n" ));
  292. ASSERT((ulDereferenceCount > 0));
  294. // Note: Subtract one off of the deref count, this avoids an extra interlock operation
  295. // After exit, SpFreeCredentialsHandle will call CredHandlerRelease
  298. ulDereferenceCount--;
  300. if( ulDereferenceCount == 1 )
  301. {
  302. DebugLog((DEB_TRACE, "CredHandlerHandleToPtr: Derefencing by one count\n" ));
  303. lReferences = InterlockedDecrement( &Credential->lReferences );
  305. ASSERT( (lReferences > 0) );
  307. }
  308. else if( ulDereferenceCount > 1 )
  309. {
  311. //
  312. // there is no equivalent to InterlockedSubtract.
  313. // so, turn it into an Add with some signed magic.
  314. //
  316. LONG lDecrementToIncrement = 0 - ulDereferenceCount;
  318. DebugLog((DEB_TRACE, "CredHandlerHandleToPtr: Derefencing by %lu count\n", ulDereferenceCount ));
  320. lReferences = InterlockedExchangeAdd( &Credential->lReferences, lDecrementToIncrement );
  321. lReferences += lDecrementToIncrement;
  323. ASSERT( (lReferences > 0) );
  324. }
  325. }
  327. // Found the Credential
  328. *UserCredential = Credential ;
  329. goto CleanUp;
  331. }
  332. }
  335. //
  336. // No match found
  337. //
  338. DebugLog((DEB_WARN, "CredHandlerHandleToCredential: Tried to reference unknown Credential 0x%lx\n",
  339. CredentialHandle ));
  341. Status = STATUS_INVALID_HANDLE;
  343. CleanUp:
  345. RtlLeaveCriticalSection( &l_CredentialCritSect );
  347. DebugLog((DEB_TRACE_FUNC, "CredHandlerHandleToPtr: Leaving Credential 0x%x\n", CredentialHandle));
  349. return(Status);
  350. }
  353. // Locate a Credential based on a LogonId, ProcessID
  354. // For either the Logon list or the Credential list
  356. NTSTATUS
  357. CredHandlerLocatePtr(
  358. IN PLUID pLogonId,
  359. IN ULONG CredentialUseFlags,
  360. OUT PDIGEST_CREDENTIAL * UserCredential
  361. )
  362. {
  363. PLIST_ENTRY ListEntry = NULL;
  364. PDIGEST_CREDENTIAL Credential = NULL;
  365. NTSTATUS Status = STATUS_SUCCESS;
  366. // SECPKG_CLIENT_INFO ClientInfo;
  367. SECPKG_CALL_INFO CallInfo;
  368. LONG lReferences = 0;
  370. DebugLog((DEB_TRACE_FUNC, "CredHandlerLocatePtr: Entering\n"));
  372. *UserCredential = NULL ;
  374. // If we do not have a LogonId
  375. if (!pLogonId)
  376. {
  377. return(STATUS_INVALID_HANDLE);
  378. }
  380. //
  381. // Match both flags
  382. //
  384. // CredentialUseFlags |= CredentialFlags;
  386. if (!g_LsaFunctions->GetCallInfo(&CallInfo))
  387. {
  388. DebugLog((DEB_ERROR,"CredHandlerLocatePtr: Failed to get call info\n"));
  389. return(STATUS_INVALID_HANDLE); // Really this is another error
  390. }
  393. //
  394. // Acquire exclusive access to the Credential list
  395. //
  397. RtlEnterCriticalSection( &l_CredentialCritSect );
  400. //
  401. // Now walk the list of Credentials looking for a match.
  402. //
  404. for ( ListEntry = l_CredentialList.Flink;
  405. ListEntry != &l_CredentialList;
  406. ListEntry = ListEntry->Flink )
  407. {
  409. Credential = CONTAINING_RECORD( ListEntry, DIGEST_CREDENTIAL, Next );
  412. //
  413. // Found a match ... reference this Credential
  414. // (if the Credential is being removed, we would increment
  415. // and then decrement the reference, so don't bother doing
  416. // either - since they cancel each other out).
  417. //
  419. // If this is a session credential then check for appropriate flags (like inbound or outbound)
  420. if ((Credential->CredentialUseFlags & DIGEST_CRED_MATCH_FLAGS) != CredentialUseFlags)
  421. {
  422. continue;
  423. }
  425. if (RtlEqualLuid(&(Credential->LogonId), pLogonId) &&
  426. (Credential->ClientProcessID == CallInfo.ProcessId))
  427. {
  428. lReferences = InterlockedIncrement(&Credential->lReferences);
  430. DebugLog((DEB_TRACE, "CredHandlerLocatePtr: ReferenceCount %ld\n", lReferences));
  432. // Found the Credential
  433. *UserCredential = Credential ;
  435. goto CleanUp;
  437. }
  439. }
  441. //
  442. // No match found
  443. //
  444. DebugLog((DEB_WARN, "CredHandlerLocatePtr: Tried to reference unknown LogonId (%x:%lx)\n",
  445. pLogonId->HighPart, pLogonId->LowPart ));
  446. Status = STATUS_INVALID_HANDLE;
  448. CleanUp:
  450. RtlLeaveCriticalSection( &l_CredentialCritSect );
  453. DebugLog((DEB_TRACE_FUNC, "CredHandlerLocatePtr: Leaving Status 0x%x\n", Status));
  454. return(Status);
  456. }
  460. //+--------------------------------------------------------------------
  461. //
  462. // Function: CredHandlerRelease
  463. //
  464. // Synopsis: Releases the Credential by decreasing reference counter
  465. // if Credential reference count drops to zero, Credential is deleted
  466. //
  467. // Arguments: pCredential - pointer to credential to de-reference
  468. //
  469. // Returns: NTSTATUS
  470. //
  471. // Notes: Called by ASC. Since multiple threads can have a credential
  472. // checked out, simply decrease the reference counter on release.
  473. //
  474. //---------------------------------------------------------------------
  475. NTSTATUS
  476. CredHandlerRelease(
  477. PDIGEST_CREDENTIAL pCredential)
  478. {
  479. NTSTATUS Status = STATUS_SUCCESS;
  481. LONG lReferences = 0;
  483. DebugLog((DEB_TRACE_FUNC, "CredHandlerRelease: Entering for Credential 0x%0x\n", pCredential));
  485. lReferences = InterlockedDecrement(&pCredential->lReferences);
  487. DebugLog((DEB_TRACE, "CredHandlerRelease: ReferenceCount %ld\n", lReferences));
  489. ASSERT( lReferences >= 0 );
  491. //
  492. // If the count has dropped to zero, then free all alloced stuff
  493. // Care must be taken since Cred is still in linked list - need to grab critsec
  494. // and then test again if zero since another thread might have taken a ref to cred
  495. //
  497. if (lReferences == 0)
  498. {
  499. RtlEnterCriticalSection( &l_CredentialCritSect );
  501. // Check to make sure no one took a reference since InterlockDecrement
  502. if (pCredential->lReferences)
  503. {
  504. DebugLog((DEB_TRACE, "CredHandlerRelease: Another thread took a reference. No action taken\n"));
  505. }
  506. else
  507. {
  508. // Safe to remove from list and delete
  509. // Check if added into linked list
  510. if (!pCredential->Unlinked)
  511. {
  512. RemoveEntryList( &pCredential->Next );
  513. DebugLog((DEB_TRACE, "CredHandlerRelease: Unlinked Credential 0x%x\n", pCredential));
  514. }
  516. DebugLog((DEB_TRACE, "CredHandlerRelease: Deleting Credential 0x%x\n", pCredential));
  517. Status = CredentialFree(pCredential);
  518. }
  520. RtlLeaveCriticalSection( &l_CredentialCritSect );
  521. }
  523. DebugLog((DEB_TRACE_FUNC, "LogSessHandlerRelease: Leaving Status 0x%x\n", Status));
  525. return(Status);
  526. }
  529. // Helper functions for processing fields within the credentials
  533. //+--------------------------------------------------------------------
  534. //
  535. // Function: CredHandlerPasswdSet
  536. //
  537. // Synopsis: Set the unicode string password in the credential
  538. //
  539. // Arguments: pCredential - pointer to credential to use
  540. // pustrPasswd - pointer to new password
  541. //
  542. // Returns: NTSTATUS
  543. //
  544. // Notes: might want to use record locking in the future instead
  545. // of an update flag on credentials
  546. //
  547. //---------------------------------------------------------------------
  548. NTSTATUS
  549. CredHandlerPasswdSet(
  550. IN OUT PDIGEST_CREDENTIAL pCredential,
  551. IN PUNICODE_STRING pustrPasswd)
  552. {
  553. NTSTATUS Status = STATUS_SUCCESS;
  555. // Protect writing the info into the credential
  556. RtlEnterCriticalSection( &l_CredentialCritSect );
  557. if (pCredential->ustrPassword.Buffer)
  558. {
  559. UnicodeStringFree(&(pCredential->ustrPassword));
  560. }
  561. Status = UnicodeStringDuplicatePassword(&(pCredential->ustrPassword),pustrPasswd);
  562. RtlLeaveCriticalSection( &l_CredentialCritSect );
  564. if (!NT_SUCCESS(Status))
  565. {
  566. DebugLog((DEB_ERROR, "CredHandlerPasswdSet: Error in setting Credential password, status 0x%0x\n", Status ));
  567. }
  569. return(Status);
  570. }
  574. //+--------------------------------------------------------------------
  575. //
  576. // Function: CredHandlerPasswdGet
  577. //
  578. // Synopsis: Get the unicode string password in the credential
  579. // Locking is only necessary for the logon creds and not the session creds
  580. // but it is just as well to keep it unifom
  581. //
  582. // Arguments: pCredential - pointer to credential to use
  583. // pustrPasswd - pointer to destination copy of password
  584. //
  585. // Returns: NTSTATUS
  586. //
  587. // Notes:
  588. //
  589. //---------------------------------------------------------------------
  590. NTSTATUS
  591. CredHandlerPasswdGet(
  592. IN PDIGEST_CREDENTIAL pCredential,
  593. OUT PUNICODE_STRING pustrPasswd)
  594. {
  595. NTSTATUS Status = STATUS_SUCCESS;
  597. // Protect reading/writing the credential password
  598. RtlEnterCriticalSection( &l_CredentialCritSect );
  599. if (pustrPasswd->Buffer)
  600. {
  601. UnicodeStringFree(pustrPasswd);
  602. }
  603. Status = UnicodeStringDuplicatePassword(pustrPasswd, &(pCredential->ustrPassword));
  604. RtlLeaveCriticalSection( &l_CredentialCritSect );
  605. if (!NT_SUCCESS(Status))
  606. {
  607. DebugLog((DEB_ERROR, "CredHandlerPasswdSet: Error in setting Credential password, status 0x%0x\n", Status ));
  608. }
  610. return(Status);
  611. }