archive
/
windows-xp
mirror of https://github.com/tongzx/nt5src
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Source code of Windows XP (NT5)
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
6 Commits
1 Branch
0 Tags
2.0 GiB
Tree: daad8a087a
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'daad8a087a'
${ noResults }
windows-xp/Source/XPSP1/NT/ds/security/protocols/schannel/lsa/stubs.c

621 lines
15 KiB
Raw Normal View History

Add source files
4 years ago
  1. //+---------------------------------------------------------------------------
  2. //
  3. // Microsoft Windows
  4. // Copyright (C) Microsoft Corporation, 1992 - 1995.
  5. //
  6. // File: stubs.c
  7. //
  8. // Contents:
  9. //
  10. // Classes:
  11. //
  12. // Functions:
  13. //
  14. // History: 8-01-95 RichardW Created
  15. //
  16. //----------------------------------------------------------------------------
  19. #include "sslp.h"
  20. #include "spsspi.h"
  21. #include <cert509.h>
  22. #include <rsa.h>
  25. CHAR CertTag[ 13 ] = { 0x04, 0x0b, 'c', 'e', 'r', 't', 'i', 'f', 'i', 'c', 'a', 't', 'e' };
  27. SecurityFunctionTableW SPFunctionTable = {
  28. SECURITY_SUPPORT_PROVIDER_INTERFACE_VERSION,
  29. EnumerateSecurityPackagesW,
  30. NULL,
  31. AcquireCredentialsHandleW,
  32. FreeCredentialsHandle,
  33. NULL,
  34. InitializeSecurityContextW,
  35. AcceptSecurityContext,
  36. CompleteAuthToken,
  37. DeleteSecurityContext,
  38. ApplyControlToken,
  39. QueryContextAttributesW,
  40. ImpersonateSecurityContext,
  41. RevertSecurityContext,
  42. MakeSignature,
  43. VerifySignature,
  44. FreeContextBuffer,
  45. QuerySecurityPackageInfoW,
  46. SealMessage,
  47. UnsealMessage,
  48. NULL, /* GrantProxyW */
  49. NULL, /* RevokeProxyW */
  50. NULL, /* InvokeProxyW */
  51. NULL, /* RenewProxyW */
  52. QuerySecurityContextToken,
  53. SealMessage,
  54. UnsealMessage,
  55. SetContextAttributesW
  56. };
  58. SecurityFunctionTableA SPFunctionTableA = {
  59. SECURITY_SUPPORT_PROVIDER_INTERFACE_VERSION,
  60. EnumerateSecurityPackagesA,
  61. NULL,
  62. AcquireCredentialsHandleA,
  63. FreeCredentialsHandle,
  64. NULL,
  65. InitializeSecurityContextA,
  66. AcceptSecurityContext,
  67. CompleteAuthToken,
  68. DeleteSecurityContext,
  69. ApplyControlToken,
  70. QueryContextAttributesA,
  71. ImpersonateSecurityContext,
  72. RevertSecurityContext,
  73. MakeSignature,
  74. VerifySignature,
  75. FreeContextBuffer,
  76. QuerySecurityPackageInfoA,
  77. SealMessage,
  78. UnsealMessage,
  79. NULL, /* GrantProxyA */
  80. NULL, /* RevokeProxyA */
  81. NULL, /* InvokeProxyA */
  82. NULL, /* RenewProxyA */
  83. QuerySecurityContextToken,
  84. SealMessage,
  85. UnsealMessage,
  86. SetContextAttributesA
  87. };
  90. PSecurityFunctionTableW SEC_ENTRY
  91. InitSecurityInterfaceW(
  92. VOID )
  93. {
  94. return(&SPFunctionTable);
  95. }
  97. PSecurityFunctionTableA SEC_ENTRY
  98. InitSecurityInterfaceA(
  99. VOID )
  100. {
  101. return(&SPFunctionTableA);
  102. }
  106. SECURITY_STATUS SEC_ENTRY
  107. FreeContextBuffer(
  108. void SEC_FAR * pvContextBuffer
  109. )
  110. {
  111. SPExternalFree( pvContextBuffer );
  112. return(SEC_E_OK);
  113. }
  117. SECURITY_STATUS SEC_ENTRY
  118. SecurityPackageControl(
  119. SEC_WCHAR SEC_FAR * pszPackageName,
  120. unsigned long dwFunctionCode,
  121. unsigned long cbInputBuffer,
  122. unsigned char SEC_FAR * pbInputBuffer,
  123. unsigned long SEC_FAR * pcbOutputBuffer,
  124. unsigned char SEC_FAR * pbOutputBuffer)
  125. {
  126. return(SEC_E_UNSUPPORTED_FUNCTION);
  127. }
  129. SECURITY_STATUS PctTranslateError(SP_STATUS spRet)
  130. {
  131. if(HRESULT_FACILITY(spRet) == FACILITY_SECURITY)
  132. {
  133. return (spRet);
  134. }
  136. switch(spRet) {
  137. case PCT_ERR_OK: return SEC_E_OK;
  138. case PCT_ERR_BAD_CERTIFICATE: return SEC_E_INVALID_TOKEN;
  139. case PCT_ERR_CLIENT_AUTH_FAILED: return SEC_E_INVALID_TOKEN;
  140. case PCT_ERR_ILLEGAL_MESSAGE: return SEC_E_INVALID_TOKEN;
  141. case PCT_ERR_INTEGRITY_CHECK_FAILED: return SEC_E_MESSAGE_ALTERED;
  142. case PCT_ERR_SERVER_AUTH_FAILED: return SEC_E_INVALID_TOKEN;
  143. case PCT_ERR_SPECS_MISMATCH: return SEC_E_ALGORITHM_MISMATCH;
  144. case PCT_ERR_SSL_STYLE_MSG: return SEC_E_INVALID_TOKEN;
  145. case SEC_I_INCOMPLETE_CREDENTIALS: return SEC_I_INCOMPLETE_CREDENTIALS;
  146. case PCT_ERR_RENEGOTIATE: return SEC_I_RENEGOTIATE;
  147. case PCT_ERR_UNKNOWN_CREDENTIAL: return SEC_E_UNKNOWN_CREDENTIALS;
  149. case CERT_E_UNTRUSTEDROOT: return SEC_E_UNTRUSTED_ROOT;
  150. case CERT_E_EXPIRED: return SEC_E_CERT_EXPIRED;
  151. case CERT_E_VALIDITYPERIODNESTING: return SEC_E_CERT_EXPIRED;
  152. case CERT_E_REVOKED: return CRYPT_E_REVOKED;
  153. case CERT_E_CN_NO_MATCH: return SEC_E_WRONG_PRINCIPAL;
  155. case PCT_INT_BAD_CERT: return SEC_E_INVALID_TOKEN;
  156. case PCT_INT_CLI_AUTH: return SEC_E_INVALID_TOKEN;
  157. case PCT_INT_ILLEGAL_MSG: return SEC_E_INVALID_TOKEN;
  158. case PCT_INT_SPECS_MISMATCH: return SEC_E_ALGORITHM_MISMATCH;
  159. case PCT_INT_INCOMPLETE_MSG: return SEC_E_INCOMPLETE_MESSAGE;
  160. case PCT_INT_MSG_ALTERED: return SEC_E_MESSAGE_ALTERED;
  161. case PCT_INT_INTERNAL_ERROR: return SEC_E_INTERNAL_ERROR;
  162. case PCT_INT_DATA_OVERFLOW: return SEC_E_INTERNAL_ERROR;
  163. case SEC_E_INCOMPLETE_CREDENTIALS: return SEC_E_INCOMPLETE_CREDENTIALS;
  164. case PCT_INT_RENEGOTIATE: return SEC_I_RENEGOTIATE;
  165. case PCT_INT_UNKNOWN_CREDENTIAL: return SEC_E_UNKNOWN_CREDENTIALS;
  167. case PCT_INT_BUFF_TOO_SMALL: return SEC_E_BUFFER_TOO_SMALL;
  168. case SEC_E_BUFFER_TOO_SMALL: return SEC_E_BUFFER_TOO_SMALL;
  170. default: return SEC_E_INTERNAL_ERROR;
  171. }
  172. }
  174. //+---------------------------------------------------------------------------
  175. //
  176. // Function: SslGenerateRandomBits
  177. //
  178. // Synopsis: Hook for setup to get a good random stream
  179. //
  180. // Arguments: [pRandomData] --
  181. // [cRandomData] --
  182. //
  183. //
  184. // Notes:
  185. //
  186. //----------------------------------------------------------------------------
  187. VOID
  188. WINAPI
  189. SslGenerateRandomBits(
  190. PUCHAR pRandomData,
  191. LONG cRandomData
  192. )
  193. {
  194. if(!SchannelInit(TRUE))
  195. {
  196. return;
  197. }
  199. GenerateRandomBits(pRandomData, (ULONG)cRandomData);
  200. }
  203. //+---------------------------------------------------------------------------
  204. //
  205. // Function: SslGenerateKeyPair
  206. //
  207. // Synopsis: Generates a public/private key pair, protected by password
  208. //
  209. // Arguments: [pCerts] --
  210. // [pszDN] --
  211. // [pszPassword] --
  212. // [Bits] --
  213. //
  214. // Notes:
  215. //
  216. //----------------------------------------------------------------------------
  217. BOOL
  218. WINAPI
  219. SslGenerateKeyPair(
  220. PSSL_CREDENTIAL_CERTIFICATE pCerts,
  221. PSTR pszDN,
  222. PSTR pszPassword,
  223. DWORD Bits )
  224. {
  225. if(!SchannelInit(TRUE))
  226. {
  227. return FALSE;
  228. }
  230. #ifdef SCHANNEL_EXPORT
  231. if ( Bits > 1024 )
  232. {
  233. SetLastError( ERROR_INVALID_PARAMETER );
  234. return( FALSE );
  235. }
  236. #endif
  237. return GenerateKeyPair(pCerts, pszDN, pszPassword, Bits);
  238. }
  241. //+---------------------------------------------------------------------------
  242. //
  243. // Function: SslGetMaximumKeySize
  244. //
  245. // Synopsis: Returns maximum public key size
  246. //
  247. // Arguments: [Reserved] --
  248. //
  249. // Notes:
  250. //
  251. //----------------------------------------------------------------------------
  252. DWORD
  253. WINAPI
  254. SslGetMaximumKeySize(
  255. DWORD Reserved )
  256. {
  258. #ifdef SCHANNEL_EXPORT
  259. return( 1024 );
  260. #else
  261. return( 2048 );
  262. #endif
  264. }
  267. //+---------------------------------------------------------------------------
  268. //
  269. // Function: SslFreeCertificate
  270. //
  271. // Synopsis: Frees a certificate created from SslCrackCertificate
  272. //
  273. // Arguments: [pCertificate] --
  274. //
  275. // Notes:
  276. //
  277. //----------------------------------------------------------------------------
  278. VOID
  279. WINAPI
  280. SslFreeCertificate(
  281. PX509Certificate pCertificate)
  282. {
  283. if ( pCertificate )
  284. {
  286. SPExternalFree(pCertificate->pPublicKey);
  287. SPExternalFree(pCertificate);
  288. }
  289. }
  294. //+---------------------------------------------------------------------------
  295. //
  296. // Function: SslCrackCertificate
  297. //
  298. // Synopsis: Cracks a X509 certificate into remotely easy format
  299. //
  300. // Arguments: [pbCertificate] --
  301. // [cbCertificate] --
  302. // [dwFlags] --
  303. // [ppCertificate] --
  304. //
  305. // Notes:
  306. //
  307. //----------------------------------------------------------------------------
  308. BOOL
  309. WINAPI
  310. SslCrackCertificate(
  311. PUCHAR pbCertificate,
  312. DWORD cbCertificate,
  313. DWORD dwFlags,
  314. PX509Certificate * ppCertificate)
  315. {
  318. PX509Certificate pResult = NULL;
  319. PCCERT_CONTEXT pContext = NULL;
  320. DWORD cbIssuer;
  321. DWORD cbSubject;
  323. if(!SchannelInit(TRUE))
  324. {
  325. return FALSE;
  326. }
  328. if (dwFlags & CF_CERT_FROM_FILE)
  329. {
  330. if (cbCertificate < CERT_HEADER_LEN + 1 )
  331. {
  332. goto error;
  333. }
  335. //
  336. // Sleazy quick check. Some CAs wrap certs in a cert wrapper.
  337. // Some don't. Some do both, but we won't mention any names.
  338. // Quick check for the wrapper tag. If so, scoot in by enough
  339. // to bypass it (17 bytes. Sheesh).
  340. //
  342. if ( memcmp( pbCertificate + 4, CertTag, sizeof( CertTag ) ) == 0 )
  343. {
  344. pbCertificate += CERT_HEADER_LEN;
  345. cbCertificate -= CERT_HEADER_LEN;
  346. }
  347. }
  351. pContext = CertCreateCertificateContext(X509_ASN_ENCODING, pbCertificate, cbCertificate);
  352. if(pContext == NULL)
  353. {
  354. SP_LOG_RESULT(GetLastError());
  355. goto error;
  356. }
  358. if(0 >= (cbSubject = CertNameToStrA(pContext->dwCertEncodingType,
  359. &pContext->pCertInfo->Subject,
  360. CERT_X500_NAME_STR | CERT_NAME_STR_NO_PLUS_FLAG,
  361. NULL, 0)))
  362. {
  363. SP_LOG_RESULT(GetLastError());
  364. goto error;
  365. }
  367. if(0 >= (cbIssuer = CertNameToStrA(pContext->dwCertEncodingType,
  368. &pContext->pCertInfo->Issuer,
  369. CERT_X500_NAME_STR | CERT_NAME_STR_NO_PLUS_FLAG,
  370. NULL, 0)))
  371. {
  372. SP_LOG_RESULT(GetLastError());
  373. goto error;
  374. }
  377. pResult = SPExternalAlloc(sizeof(X509Certificate) + cbIssuer + cbSubject + 2);
  378. if(pResult == NULL)
  379. {
  380. goto error;
  381. }
  382. pResult->pPublicKey = NULL;
  383. pResult->pszIssuer = (PUCHAR)(pResult + 1);
  384. pResult->pszSubject = pResult->pszIssuer + cbIssuer;
  386. pResult->Version = pContext->pCertInfo->dwVersion;
  387. memcpy(pResult->SerialNumber,
  388. pContext->pCertInfo->SerialNumber.pbData,
  389. min(sizeof(pResult->SerialNumber), pContext->pCertInfo->SerialNumber.cbData));
  390. pResult->ValidFrom = pContext->pCertInfo->NotBefore;
  391. pResult->ValidUntil = pContext->pCertInfo->NotAfter;
  393. if(0 >= CertNameToStrA(pContext->dwCertEncodingType,
  394. &pContext->pCertInfo->Issuer,
  395. CERT_X500_NAME_STR | CERT_NAME_STR_NO_PLUS_FLAG,
  396. pResult->pszIssuer, cbIssuer))
  397. {
  398. SP_LOG_RESULT(GetLastError());
  399. goto error;
  400. }
  402. if(0 >= CertNameToStrA(pContext->dwCertEncodingType,
  403. &pContext->pCertInfo->Subject,
  404. CERT_X500_NAME_STR | CERT_NAME_STR_NO_PLUS_FLAG,
  405. pResult->pszSubject, cbSubject))
  406. {
  407. SP_LOG_RESULT(GetLastError());
  408. goto error;
  409. }
  411. {
  412. BSAFE_PUB_KEY *pk;
  413. PUBLICKEY * pPubKey = NULL;
  414. SP_STATUS pctRet;
  415. DWORD cbPublicKey;
  417. pResult->pPublicKey = SPExternalAlloc(sizeof(PctPublicKey) + sizeof(BSAFE_PUB_KEY));
  418. if(pResult->pPublicKey == NULL)
  419. {
  420. goto error;
  421. }
  422. pResult->pPublicKey->Type = 0;
  423. pResult->pPublicKey->cbKey = sizeof(BSAFE_PUB_KEY);
  425. pk = (BSAFE_PUB_KEY *)pResult->pPublicKey->pKey;
  426. pk->magic = RSA1;
  428. pctRet = SPPublicKeyFromCert(pContext, &pPubKey, NULL);
  430. if(pctRet == PCT_ERR_OK)
  431. {
  432. if(pPubKey->pPublic->aiKeyAlg == CALG_RSA_KEYX)
  433. {
  434. RSAPUBKEY *pRsaKey = (RSAPUBKEY *)(pPubKey->pPublic + 1);
  435. pk->keylen = pRsaKey->bitlen/8;
  436. pk->bitlen = pRsaKey->bitlen;
  437. pk->datalen = pk->bitlen/8 - 1;
  438. pk->pubexp = pRsaKey->pubexp;
  439. }
  440. else
  441. {
  442. DHPUBKEY *pDHKey = (DHPUBKEY *)(pPubKey->pPublic + 1);
  443. pk->keylen = pDHKey->bitlen/8;
  444. pk->bitlen = pDHKey->bitlen/8;
  445. pk->datalen = pk->bitlen/8 - 1;
  446. pk->pubexp = 0;
  448. }
  449. SPExternalFree(pPubKey);
  450. }
  451. else
  452. {
  453. goto error;
  454. }
  456. }
  457. CertFreeCertificateContext(pContext);
  459. *ppCertificate = pResult;
  460. return TRUE;
  462. error:
  463. if(pContext)
  464. {
  465. CertFreeCertificateContext(pContext);
  466. }
  467. if(pResult)
  468. {
  469. if(pResult->pPublicKey)
  470. {
  471. SPExternalFree(pResult->pPublicKey);
  472. }
  473. SPExternalFree(pResult);
  474. }
  475. return FALSE;
  476. }
  478. //+---------------------------------------------------------------------------
  479. //
  480. // Function: SslLoadCertificate
  481. //
  482. // Synopsis: Not supported.
  483. //
  484. // Notes:
  485. //
  486. //----------------------------------------------------------------------------
  487. BOOL
  488. WINAPI
  489. SslLoadCertificate(
  490. PUCHAR pbCertificate,
  491. DWORD cbCertificate,
  492. BOOL AddToWellKnownKeys)
  493. {
  494. return FALSE;
  495. }
  498. BOOL
  499. SslGetClientProcess(ULONG *pProcessID)
  500. {
  501. SECPKG_CALL_INFO CallInfo;
  502. SECURITY_STATUS Status;
  504. if(LsaTable == NULL)
  505. {
  506. *pProcessID = GetCurrentProcessId();
  507. return TRUE;
  508. }
  510. if(LsaTable->GetCallInfo(&CallInfo))
  511. {
  512. *pProcessID = CallInfo.ProcessId;
  513. return TRUE;
  514. }
  515. else
  516. {
  517. *pProcessID = -1;
  518. return FALSE;
  519. }
  520. }
  522. BOOL
  523. SslGetClientThread(ULONG *pThreadID)
  524. {
  525. SECPKG_CALL_INFO CallInfo;
  526. SECURITY_STATUS Status;
  528. if(LsaTable == NULL)
  529. {
  530. *pThreadID = GetCurrentThreadId();
  531. return TRUE;
  532. }
  534. if(LsaTable->GetCallInfo(&CallInfo))
  535. {
  536. *pThreadID = CallInfo.ThreadId;
  537. return TRUE;
  538. }
  539. else
  540. {
  541. *pThreadID = -1;
  542. return FALSE;
  543. }
  544. }
  546. BOOL
  547. SslImpersonateClient(void)
  548. {
  549. SECPKG_CALL_INFO CallInfo;
  550. SECURITY_STATUS Status;
  552. // Don't impersonate if we're in the client process.
  553. if(LsaTable == NULL)
  554. {
  555. return FALSE;
  556. }
  558. // Don't impersonate if the client is running in the lsass process.
  559. if(LsaTable->GetCallInfo(&CallInfo))
  560. {
  561. if(CallInfo.ProcessId == GetCurrentProcessId())
  562. {
  563. // DebugLog((DEB_WARN, "Running locally, so don't impersonate.\n"));
  564. return FALSE;
  565. }
  566. }
  568. Status = LsaTable->ImpersonateClient();
  569. if(!NT_SUCCESS(Status))
  570. {
  571. SP_LOG_RESULT(Status);
  572. return FALSE;
  573. }
  575. return TRUE;
  576. }
  578. NTSTATUS
  579. SslGetClientLogonId(LUID *pLogonId)
  580. {
  581. SECPKG_CLIENT_INFO ClientInfo;
  582. SECURITY_STATUS Status;
  584. memset(pLogonId, 0, sizeof(LUID));
  586. Status = LsaTable->GetClientInfo(&ClientInfo);
  587. if(NT_SUCCESS(Status))
  588. {
  589. *pLogonId = ClientInfo.LogonId;
  590. }
  592. return Status;
  593. }
  595. PVOID SPExternalAlloc(DWORD cbLength)
  596. {
  597. if(LsaTable)
  598. {
  599. // Lsass process
  600. return LsaTable->AllocateLsaHeap(cbLength);
  601. }
  602. else
  603. {
  604. // Application process
  605. return LocalAlloc(LPTR, cbLength);
  606. }
  607. }
  609. VOID SPExternalFree(PVOID pMemory)
  610. {
  611. if(LsaTable)
  612. {
  613. // Lsass process
  614. LsaTable->FreeLsaHeap(pMemory);
  615. }
  616. else
  617. {
  618. // Application process
  619. LocalFree(pMemory);
  620. }
  621. }