|
|
/*++
Copyright (c) 1998 Microsoft Corporation
Module Name:
init.c
Abstract:
Dll initialization for sspi digest package.
Author:
Adriaan Canter (adriaanc) 01-Aug-1998
--*/
#include "include.hxx"
#include "digestui.hxx"
#include "resource.h"
// Serializes access to all globals in module
CRITICAL_SECTION DllCritSect;
// Per process credential cache.
CCredCache *g_pCache = NULL;
// Per process cache init flag
BOOL g_fCredCacheInit = FALSE;
// Global module handle.
HMODULE g_hModule = NULL;
// Global handle to shlwapi.
HMODULE g_hShlwapi = NULL;
// Status of cred persist services on machine.
DWORD g_dwCredPersistAvail = CRED_PERSIST_UNKNOWN;
DWORD_PTR g_pHeap = NULL;
//--------------------------------------------------------------------
// DigestServicesExist
//--------------------------------------------------------------------
BOOL DigestServicesExist(){ INIT_SECURITY_INTERFACE addrProcISI = NULL; PSecurityFunctionTable pFuncTbl = NULL;
PSecPkgInfoA pSecPkgInfo; SECURITY_STATUS ssResult; DWORD cPackages;
OSVERSIONINFO VerInfo; CHAR szDLL[MAX_PATH]; HINSTANCE hSecLib;
BOOL fDigest = FALSE;
// Get the OS version.
VerInfo.dwOSVersionInfoSize = sizeof (OSVERSIONINFO); GetVersionEx (&VerInfo);
// Load the appropriate dll.
if (VerInfo.dwPlatformId == VER_PLATFORM_WIN32_NT) lstrcpy (szDLL, SSP_SPM_NT_DLL); else if (VerInfo.dwPlatformId == VER_PLATFORM_WIN32_WINDOWS) lstrcpy (szDLL, SSP_SPM_WIN95_DLL); else goto exit;
hSecLib = LoadLibrary (szDLL); if (!hSecLib) goto exit;
// Get the dispatch table.
addrProcISI = (INIT_SECURITY_INTERFACE) GetProcAddress( hSecLib, SECURITY_ENTRYPOINT_ANSI); pFuncTbl = (*addrProcISI)();
if (!pFuncTbl) goto exit;
// Enumerate security pkgs and determine if digest is installed.
ssResult = (*(pFuncTbl->EnumerateSecurityPackagesA))(&cPackages, &pSecPkgInfo);
if (ssResult == SEC_E_OK) { for (DWORD i = 0; i < cPackages; i++) { if (lstrcmpi(pSecPkgInfo[i].Name, "Digest") == 0) { fDigest = TRUE; break; } } }exit: return fDigest;}
//--------------------------------------------------------------------
// DLLInstall
//--------------------------------------------------------------------
STDAPIDllInstall( IN BOOL bInstall, // Install or Uninstall
IN LPCWSTR pwStr){ HKEY hKey; DWORD dwError, dwRegDisp, cbSP = MAX_PATH; CHAR *ptr, *ptrNext, szSP[MAX_PATH]; BOOL bHKLM = FALSE;
// Determine if full install (provide client digest sspi svcs)
// or just passport install (server pkg delegating to client)
if (!pwStr || !*pwStr || (!wcscmp(pwStr, L"HKLM"))) { bHKLM = TRUE; }
// Add "digest.dll" to comma delimited Service Providers list in
// HKLM\System\CurrentControlSet\Control\SecurityProviders only if
// no digest security providers currently exist.
if (bInstall && bHKLM && !DigestServicesExist()) { // Open or create SecurityProviders key.
dwError = RegCreateKeyEx(HKEY_LOCAL_MACHINE, SECURITY_PROVIDERS_REG_KEY, 0, NULL, 0, KEY_READ | KEY_WRITE, NULL, &hKey, &dwRegDisp);
// Successfully opened/created key.
if (dwError == ERROR_SUCCESS) { cbSP = MAX_PATH; dwError = RegQueryValueEx(hKey, SECURITY_PROVIDERS_SZ, NULL, NULL, (LPBYTE) szSP, &cbSP);
// SecurityProviders value might not be
// found which is ok since we will create it.
if (dwError == ERROR_SUCCESS || dwError == ERROR_FILE_NOT_FOUND) { // Value not found same as value existed but no string.
if (dwError == ERROR_FILE_NOT_FOUND) { ptr = NULL; cbSP = 0; } // Otherwise if value found -> check if "digest.dll" exists.
else { // We can use the handy FindToken from the CParams object
// to determine if a token occurs in a comma delmited list.
if (!CParams::FindToken(szSP, cbSP, "digest.dll", sizeof("digest.dll") - 1, &ptr)) { ptr = NULL; } }
// Only add "digest.dll" if doesn't already exist.
if (!ptr) { // If we found value/data append "digest.dll"
if (cbSP > 1) strcat(szSP, ", digest.dll");
// Otherwise "digest.dll" is only data
else memcpy(szSP, "digest.dll", sizeof("digest.dll"));
// Write the value back.
dwError = RegSetValueEx(hKey, SECURITY_PROVIDERS_SZ, 0, REG_SZ, (LPBYTE) szSP, strlen(szSP)); } }
// Close SecurityProviders reg key.
RegCloseKey(hKey); } }
// Remove "digest.dll" from the comma delimited Service Providers list in
// HKLM\System\CurrentControlSet\Control\SecurityProviders
if (!bInstall && bHKLM) { // Open the Security Providers reg key.
dwError = RegOpenKeyEx(HKEY_LOCAL_MACHINE, SECURITY_PROVIDERS_REG_KEY, NULL, KEY_READ | KEY_WRITE, &hKey); if (dwError == ERROR_SUCCESS) { // Get the SecurityProviders value data string.
dwError = RegQueryValueEx(hKey, SECURITY_PROVIDERS_SZ, NULL, NULL, (LPBYTE) szSP, &cbSP);
if (dwError == ERROR_SUCCESS) { // Only remove "digest.dll" if exists.
if (!CParams::FindToken(szSP, cbSP, "digest.dll", sizeof("digest.dll") - 1, &ptr)) { ptr = NULL; }
if (ptr) { // Point to next item in list, might be '\0'
ptrNext = ptr + sizeof("digest.dll") - 1;
// Digest.dll is only entry.
if ((ptr == szSP) && cbSP == sizeof("digest.dll")) { *szSP = '\0'; } // "digest.dll" is last entry.
else if (*ptrNext == '\0') { *(ptr - (sizeof (", ") - 1)) = '\0'; } else if (*ptrNext == ',' && *(ptrNext+1) == ' ') { ptrNext+=2; memcpy(ptr, ptrNext, (size_t)(cbSP - (ptrNext - szSP))); }
dwError = RegSetValueEx(hKey, SECURITY_PROVIDERS_SZ, 0, REG_SZ, (LPBYTE) szSP, *szSP ? strlen(szSP) : 1); } } RegCloseKey(hKey); } }
return S_OK;}
//--------------------------------------------------------------------
// MakeFullAccessSA
//--------------------------------------------------------------------
//Commenting this function as it doesn't seem to be used anywhere in the sources
/*
SECURITY_ATTRIBUTES *MakeFullAccessSA (void){ static SECURITY_ATTRIBUTES sa; static BYTE SDBuf[SECURITY_DESCRIPTOR_MIN_LENGTH];
// Don't bother on Win95/Win98 which don't support security.
OSVERSIONINFO versionInfo; versionInfo.dwOSVersionInfoSize = sizeof(versionInfo); if (!GetVersionEx(&versionInfo) || (versionInfo.dwPlatformId == VER_PLATFORM_WIN32_WINDOWS)) return NULL;
// Create a security descriptor with ACE to allow full access to all.
SECURITY_DESCRIPTOR* pSD = (SECURITY_DESCRIPTOR*) SDBuf; if (!InitializeSecurityDescriptor (pSD, SECURITY_DESCRIPTOR_REVISION)) return NULL; if (!SetSecurityDescriptorDacl (pSD, TRUE, NULL, FALSE)) return NULL;
// Initialize the security attributes.
sa.nLength = sizeof(sa); sa.lpSecurityDescriptor = pSD; sa.bInheritHandle = TRUE; return &sa;}*///--------------------------------------------------------------------
// NewString
//--------------------------------------------------------------------
LPSTR NewString(LPSTR szString){ if (!szString) return NULL; DWORD cbString = strlen(szString);
LPSTR szNew = new CHAR[cbString+1]; if (!szNew) { DIGEST_ASSERT(FALSE); return NULL; }
memcpy(szNew, szString, cbString+1); return szNew;}
//--------------------------------------------------------------------
// InitGlobals
//--------------------------------------------------------------------
BOOL InitGlobals(){ // Return success if we've already
// initialized.
if (g_fCredCacheInit) return TRUE;
// Serialize per-process calls.
LOCK_GLOBALS();
// Recheck global flag in the case
// the cache was initialized while
// this thread was descheduled.
if (g_fCredCacheInit) { goto exit; }
// Global cred persist status.
g_dwCredPersistAvail = CRED_PERSIST_UNKNOWN;
// Create the credential cache.
g_pCache = new CCredCache();
if (!g_pCache || g_pCache->GetStatus() != ERROR_SUCCESS) { g_fCredCacheInit = FALSE; goto exit; }
g_fCredCacheInit = TRUE;
exit: UNLOCK_GLOBALS();
return g_fCredCacheInit;}
//--------------------------------------------------------------------
// DllMain
//--------------------------------------------------------------------
#if defined(__cplusplus)
extern "C"#endif
BOOLWINAPIDllMain( IN PVOID DllHandle, IN ULONG Reason, IN PCONTEXT Context OPTIONAL )
{ UNREFERENCED_PARAMETER(Context); UNREFERENCED_PARAMETER(DllHandle );
switch (Reason) { // Process attach.
case DLL_PROCESS_ATTACH: {
// BUGBUG - DislableThreadLibraryCalls and
// don't do any work.
g_hModule = (HMODULE) DllHandle; InitializeCriticalSection( &DllCritSect );
if ((hDigest = CreateMutex (NULL, FALSE, NULL)) == NULL)
return FALSE;
break; }
// Process detatch.
// Deinitialize the credential cache.
// Delete the critical section.
case DLL_PROCESS_DETACH: { if (g_pCache) delete g_pCache;
DeleteCriticalSection( &DllCritSect ); CloseHandle (hDigest); break;
} } return TRUE;}�
|
