archive
/
windows-xp
mirror of https://github.com/tongzx/nt5src
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Source code of Windows XP (NT5)
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
6 Commits
1 Branch
0 Tags
2.0 GiB
Tree: daad8a087a
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'daad8a087a'
${ noResults }
windows-xp/Source/XPSP1/NT/net/ipsec/pastore/regstore.c

1912 lines
47 KiB
Raw Normal View History

Add source files
4 years ago
  1. #include "precomp.h"
  3. LPWSTR gpszIpsecRegContainer = L"SOFTWARE\\Policies\\Microsoft\\Windows\\IPSec\\Policy\\Local";
  6. DWORD
  7. OpenRegistryIPSECRootKey(
  8. LPWSTR pszServerName,
  9. LPWSTR pszIpsecRegRootContainer,
  10. HKEY * phRegistryKey
  11. )
  12. {
  13. DWORD dwError = 0;
  15. dwError = RegOpenKeyExW(
  16. HKEY_LOCAL_MACHINE,
  17. (LPCWSTR) pszIpsecRegRootContainer,
  18. 0,
  19. KEY_ALL_ACCESS,
  20. phRegistryKey
  21. );
  23. BAIL_ON_WIN32_ERROR(dwError);
  25. error:
  27. return(dwError);
  28. }
  31. DWORD
  32. ReadPolicyObjectFromRegistry(
  33. HKEY hRegistryKey,
  34. LPWSTR pszPolicyDN,
  35. LPWSTR pszIpsecRegRootContainer,
  36. PIPSEC_POLICY_OBJECT * ppIpsecPolicyObject
  37. )
  38. {
  40. DWORD dwError = 0;
  41. PIPSEC_POLICY_OBJECT pIpsecPolicyObject = NULL;
  43. DWORD dwNumNFAObjectsReturned = 0;
  44. PIPSEC_NFA_OBJECT * ppIpsecNFAObjects = NULL;
  45. LPWSTR * ppszFilterReferences = NULL;
  46. DWORD dwNumFilterReferences = 0;
  47. LPWSTR * ppszNegPolReferences = NULL;
  48. DWORD dwNumNegPolReferences = 0;
  50. PIPSEC_FILTER_OBJECT * ppIpsecFilterObjects = NULL;
  51. DWORD dwNumFilterObjects = 0;
  53. PIPSEC_NEGPOL_OBJECT * ppIpsecNegPolObjects = NULL;
  54. DWORD dwNumNegPolObjects = 0;
  56. PIPSEC_ISAKMP_OBJECT * ppIpsecISAKMPObjects = NULL;
  57. DWORD dwNumISAKMPObjects = 0;
  60. dwError = UnMarshallRegistryPolicyObject(
  61. hRegistryKey,
  62. pszIpsecRegRootContainer,
  63. pszPolicyDN,
  64. REG_FULLY_QUALIFIED_NAME,
  65. &pIpsecPolicyObject
  66. );
  67. BAIL_ON_WIN32_ERROR(dwError);
  69. dwError = ReadNFAObjectsFromRegistry(
  70. hRegistryKey,
  71. pszIpsecRegRootContainer,
  72. pIpsecPolicyObject->pszIpsecOwnersReference,
  73. pIpsecPolicyObject->ppszIpsecNFAReferences,
  74. pIpsecPolicyObject->NumberofRules,
  75. &ppIpsecNFAObjects,
  76. &dwNumNFAObjectsReturned,
  77. &ppszFilterReferences,
  78. &dwNumFilterReferences,
  79. &ppszNegPolReferences,
  80. &dwNumNegPolReferences
  81. );
  82. BAIL_ON_WIN32_ERROR(dwError);
  85. dwError = ReadFilterObjectsFromRegistry(
  86. hRegistryKey,
  87. pszIpsecRegRootContainer,
  88. ppszFilterReferences,
  89. dwNumFilterReferences,
  90. &ppIpsecFilterObjects,
  91. &dwNumFilterObjects
  92. );
  93. BAIL_ON_WIN32_ERROR(dwError);
  96. dwError = ReadNegPolObjectsFromRegistry(
  97. hRegistryKey,
  98. pszIpsecRegRootContainer,
  99. ppszNegPolReferences,
  100. dwNumNegPolReferences,
  101. &ppIpsecNegPolObjects,
  102. &dwNumNegPolObjects
  103. );
  104. BAIL_ON_WIN32_ERROR(dwError);
  107. dwError = ReadISAKMPObjectsFromRegistry(
  108. hRegistryKey,
  109. pszIpsecRegRootContainer,
  110. &pIpsecPolicyObject->pszIpsecISAKMPReference,
  111. 1,
  112. &ppIpsecISAKMPObjects,
  113. &dwNumISAKMPObjects
  114. );
  115. BAIL_ON_WIN32_ERROR(dwError);
  118. pIpsecPolicyObject->ppIpsecNFAObjects = ppIpsecNFAObjects;
  119. pIpsecPolicyObject->NumberofRulesReturned = dwNumNFAObjectsReturned;
  120. pIpsecPolicyObject->NumberofFilters = dwNumFilterObjects;
  121. pIpsecPolicyObject->ppIpsecFilterObjects = ppIpsecFilterObjects;
  122. pIpsecPolicyObject->ppIpsecNegPolObjects = ppIpsecNegPolObjects;
  123. pIpsecPolicyObject->NumberofNegPols = dwNumNegPolObjects;
  124. pIpsecPolicyObject->NumberofISAKMPs = dwNumISAKMPObjects;
  125. pIpsecPolicyObject->ppIpsecISAKMPObjects = ppIpsecISAKMPObjects;
  128. *ppIpsecPolicyObject = pIpsecPolicyObject;
  130. cleanup:
  132. if (ppszFilterReferences) {
  134. FreeFilterReferences(
  135. ppszFilterReferences,
  136. dwNumFilterReferences
  137. );
  138. }
  140. if (ppszNegPolReferences) {
  142. FreeNegPolReferences(
  143. ppszNegPolReferences,
  144. dwNumNegPolReferences
  145. );
  146. }
  149. return(dwError);
  151. error:
  153. if (pIpsecPolicyObject) {
  154. FreeIpsecPolicyObject(
  155. pIpsecPolicyObject
  156. );
  157. }
  159. *ppIpsecPolicyObject = NULL;
  162. goto cleanup;
  164. }
  166. DWORD
  167. ReadNFAObjectsFromRegistry(
  168. HKEY hRegistryKey,
  169. LPWSTR pszIpsecRootContainer,
  170. LPWSTR pszIpsecOwnerReference,
  171. LPWSTR * ppszNFADNs,
  172. DWORD dwNumNfaObjects,
  173. PIPSEC_NFA_OBJECT ** pppIpsecNFAObjects,
  174. PDWORD pdwNumNfaObjects,
  175. LPWSTR ** pppszFilterReferences,
  176. PDWORD pdwNumFilterReferences,
  177. LPWSTR ** pppszNegPolReferences,
  178. PDWORD pdwNumNegPolReferences
  179. )
  180. {
  182. DWORD dwError = 0;
  183. DWORD i = 0;
  184. PIPSEC_NFA_OBJECT pIpsecNFAObject = NULL;
  185. PIPSEC_NFA_OBJECT * ppIpsecNFAObjects = NULL;
  186. LPWSTR * ppszFilterReferences = NULL;
  187. LPWSTR * ppszNegPolReferences = NULL;
  188. LPWSTR pszFilterReference = NULL;
  189. LPWSTR pszNegPolReference = NULL;
  190. DWORD dwNumFilterReferences = 0;
  191. DWORD dwNumNegPolReferences = 0;
  194. DWORD dwNumNFAObjectsReturned = 0;
  196. *pppszNegPolReferences = NULL;
  197. *pdwNumFilterReferences = 0;
  198. *pppszFilterReferences = NULL;
  199. *pdwNumNegPolReferences = 0;
  200. *pppIpsecNFAObjects = NULL;
  201. *pdwNumNfaObjects = 0;
  203. ppIpsecNFAObjects = (PIPSEC_NFA_OBJECT *)AllocPolMem(
  204. sizeof(PIPSEC_NFA_OBJECT)*dwNumNfaObjects
  205. );
  206. if (!ppIpsecNFAObjects) {
  207. dwError = ERROR_OUTOFMEMORY;
  208. BAIL_ON_WIN32_ERROR(dwError);
  209. }
  212. ppszFilterReferences = (LPWSTR *)AllocPolMem(
  213. sizeof(LPWSTR)*dwNumNfaObjects
  214. );
  215. if (!ppszFilterReferences) {
  216. dwError = ERROR_OUTOFMEMORY;
  217. BAIL_ON_WIN32_ERROR(dwError);
  218. }
  220. ppszNegPolReferences = (LPWSTR *)AllocPolMem(
  221. sizeof(LPWSTR)*dwNumNfaObjects
  222. );
  223. if (!ppszNegPolReferences) {
  224. dwError = ERROR_OUTOFMEMORY;
  225. BAIL_ON_WIN32_ERROR(dwError);
  226. }
  229. for (i = 0; i < dwNumNfaObjects; i++) {
  232. dwError =UnMarshallRegistryNFAObject(
  233. hRegistryKey,
  234. pszIpsecRootContainer,
  235. *(ppszNFADNs + i),
  236. &pIpsecNFAObject,
  237. &pszFilterReference,
  238. &pszNegPolReference
  239. );
  241. if (dwError == ERROR_SUCCESS) {
  243. *(ppIpsecNFAObjects + dwNumNFAObjectsReturned) = pIpsecNFAObject;
  245. if (pszFilterReference) {
  247. *(ppszFilterReferences + dwNumFilterReferences) = pszFilterReference;
  248. dwNumFilterReferences++;
  250. }
  252. if (pszNegPolReference) {
  254. *(ppszNegPolReferences + dwNumNegPolReferences) = pszNegPolReference;
  255. dwNumNegPolReferences++;
  256. }
  258. dwNumNFAObjectsReturned++;
  260. }
  262. }
  264. if (dwNumNFAObjectsReturned == 0) {
  265. dwError = ERROR_INVALID_DATA;
  266. BAIL_ON_WIN32_ERROR(dwError);
  267. }
  269. *pppszFilterReferences = ppszFilterReferences;
  270. *pppszNegPolReferences = ppszNegPolReferences;
  272. *pppIpsecNFAObjects = ppIpsecNFAObjects;
  273. *pdwNumNfaObjects = dwNumNFAObjectsReturned;
  274. *pdwNumNegPolReferences = dwNumNegPolReferences;
  275. *pdwNumFilterReferences = dwNumFilterReferences;
  280. dwError = ERROR_SUCCESS;
  282. cleanup:
  284. return(dwError);
  286. error:
  288. if (ppszNegPolReferences) {
  289. FreeNegPolReferences(
  290. ppszNegPolReferences,
  291. dwNumNFAObjectsReturned
  292. );
  293. }
  296. if (ppszFilterReferences) {
  297. FreeFilterReferences(
  298. ppszFilterReferences,
  299. dwNumNFAObjectsReturned
  300. );
  301. }
  303. if (ppIpsecNFAObjects) {
  305. FreeIpsecNFAObjects(
  306. ppIpsecNFAObjects,
  307. dwNumNFAObjectsReturned
  308. );
  310. }
  312. *pppszNegPolReferences = NULL;
  313. *pppszFilterReferences = NULL;
  314. *pppIpsecNFAObjects = NULL;
  315. *pdwNumNfaObjects = 0;
  316. *pdwNumNegPolReferences = 0;
  317. *pdwNumFilterReferences = 0;
  319. goto cleanup;
  320. }
  323. DWORD
  324. ReadFilterObjectsFromRegistry(
  325. HKEY hRegistryKey,
  326. LPWSTR pszIpsecRootContainer,
  327. LPWSTR * ppszFilterDNs,
  328. DWORD dwNumFilterObjects,
  329. PIPSEC_FILTER_OBJECT ** pppIpsecFilterObjects,
  330. PDWORD pdwNumFilterObjects
  331. )
  332. {
  334. DWORD dwError = 0;
  335. DWORD i = 0;
  336. DWORD dwCount = 0;
  337. PIPSEC_FILTER_OBJECT pIpsecFilterObject = NULL;
  338. PIPSEC_FILTER_OBJECT * ppIpsecFilterObjects = NULL;
  340. DWORD dwNumFilterObjectsReturned = 0;
  343. *pppIpsecFilterObjects = NULL;
  344. *pdwNumFilterObjects = 0;
  346. ppIpsecFilterObjects = (PIPSEC_FILTER_OBJECT *)AllocPolMem(
  347. sizeof(PIPSEC_FILTER_OBJECT)*dwNumFilterObjects
  348. );
  349. if (!ppIpsecFilterObjects) {
  350. dwError = ERROR_OUTOFMEMORY;
  351. BAIL_ON_WIN32_ERROR(dwError);
  352. }
  355. for (i = 0; i < dwNumFilterObjects; i++) {
  357. dwError =UnMarshallRegistryFilterObject(
  358. hRegistryKey,
  359. pszIpsecRootContainer,
  360. *(ppszFilterDNs + i),
  361. REG_FULLY_QUALIFIED_NAME,
  362. &pIpsecFilterObject
  363. );
  364. if (dwError == ERROR_SUCCESS) {
  366. *(ppIpsecFilterObjects + dwNumFilterObjectsReturned) = pIpsecFilterObject;
  367. dwNumFilterObjectsReturned++;
  369. }
  372. }
  374. *pppIpsecFilterObjects = ppIpsecFilterObjects;
  375. *pdwNumFilterObjects = dwNumFilterObjectsReturned;
  377. dwError = ERROR_SUCCESS;
  379. return(dwError);
  381. error:
  384. if (ppIpsecFilterObjects) {
  386. FreeIpsecFilterObjects(
  387. ppIpsecFilterObjects,
  388. dwNumFilterObjectsReturned
  389. );
  390. }
  392. *pppIpsecFilterObjects = NULL;
  393. *pdwNumFilterObjects = 0;
  396. return(dwError);
  397. }
  401. DWORD
  402. ReadNegPolObjectsFromRegistry(
  403. HKEY hRegistryKey,
  404. LPWSTR pszIpsecRootContainer,
  405. LPWSTR * ppszNegPolDNs,
  406. DWORD dwNumNegPolObjects,
  407. PIPSEC_NEGPOL_OBJECT ** pppIpsecNegPolObjects,
  408. PDWORD pdwNumNegPolObjects
  409. )
  410. {
  412. DWORD dwError = 0;
  413. DWORD i = 0;
  414. DWORD dwCount = 0;
  415. PIPSEC_NEGPOL_OBJECT pIpsecNegPolObject = NULL;
  416. PIPSEC_NEGPOL_OBJECT * ppIpsecNegPolObjects = NULL;
  418. DWORD dwNumNegPolObjectsReturned = 0;
  421. *pppIpsecNegPolObjects = NULL;
  422. *pdwNumNegPolObjects = 0;
  424. ppIpsecNegPolObjects = (PIPSEC_NEGPOL_OBJECT *)AllocPolMem(
  425. sizeof(PIPSEC_NEGPOL_OBJECT)*dwNumNegPolObjects
  426. );
  427. if (!ppIpsecNegPolObjects) {
  428. dwError = ERROR_OUTOFMEMORY;
  429. BAIL_ON_WIN32_ERROR(dwError);
  430. }
  433. for (i = 0; i < dwNumNegPolObjects; i++) {
  435. dwError =UnMarshallRegistryNegPolObject(
  436. hRegistryKey,
  437. pszIpsecRootContainer,
  438. *(ppszNegPolDNs + i),
  439. REG_FULLY_QUALIFIED_NAME,
  440. &pIpsecNegPolObject
  441. );
  442. if (dwError == ERROR_SUCCESS) {
  444. *(ppIpsecNegPolObjects + dwNumNegPolObjectsReturned) = pIpsecNegPolObject;
  445. dwNumNegPolObjectsReturned++;
  447. }
  450. }
  452. if (dwNumNegPolObjectsReturned == 0) {
  453. dwError = ERROR_INVALID_DATA;
  454. BAIL_ON_WIN32_ERROR(dwError);
  455. }
  457. *pppIpsecNegPolObjects = ppIpsecNegPolObjects;
  458. *pdwNumNegPolObjects = dwNumNegPolObjectsReturned;
  460. dwError = ERROR_SUCCESS;
  462. return(dwError);
  464. error:
  467. if (ppIpsecNegPolObjects) {
  469. FreeIpsecNegPolObjects(
  470. ppIpsecNegPolObjects,
  471. dwNumNegPolObjectsReturned
  472. );
  473. }
  475. *pppIpsecNegPolObjects = NULL;
  476. *pdwNumNegPolObjects = 0;
  479. return(dwError);
  480. }
  482. DWORD
  483. ReadISAKMPObjectsFromRegistry(
  484. HKEY hRegistryKey,
  485. LPWSTR pszIpsecRootContainer,
  486. LPWSTR * ppszISAKMPDNs,
  487. DWORD dwNumISAKMPObjects,
  488. PIPSEC_ISAKMP_OBJECT ** pppIpsecISAKMPObjects,
  489. PDWORD pdwNumISAKMPObjects
  490. )
  491. {
  493. DWORD dwError = 0;
  494. DWORD i = 0;
  495. DWORD dwCount = 0;
  496. PIPSEC_ISAKMP_OBJECT pIpsecISAKMPObject = NULL;
  497. PIPSEC_ISAKMP_OBJECT * ppIpsecISAKMPObjects = NULL;
  499. DWORD dwNumISAKMPObjectsReturned = 0;
  502. *pppIpsecISAKMPObjects = NULL;
  503. *pdwNumISAKMPObjects = 0;
  505. ppIpsecISAKMPObjects = (PIPSEC_ISAKMP_OBJECT *)AllocPolMem(
  506. sizeof(PIPSEC_ISAKMP_OBJECT)*dwNumISAKMPObjects
  507. );
  508. if (!ppIpsecISAKMPObjects) {
  509. dwError = ERROR_OUTOFMEMORY;
  510. BAIL_ON_WIN32_ERROR(dwError);
  511. }
  514. for (i = 0; i < dwNumISAKMPObjects; i++) {
  516. dwError =UnMarshallRegistryISAKMPObject(
  517. hRegistryKey,
  518. pszIpsecRootContainer,
  519. *(ppszISAKMPDNs + i),
  520. REG_FULLY_QUALIFIED_NAME,
  521. &pIpsecISAKMPObject
  522. );
  523. if (dwError == ERROR_SUCCESS) {
  525. *(ppIpsecISAKMPObjects + dwNumISAKMPObjectsReturned) = pIpsecISAKMPObject;
  526. dwNumISAKMPObjectsReturned++;
  528. }
  531. }
  533. if (dwNumISAKMPObjectsReturned == 0) {
  534. dwError = ERROR_INVALID_DATA;
  535. BAIL_ON_WIN32_ERROR(dwError);
  536. }
  538. *pppIpsecISAKMPObjects = ppIpsecISAKMPObjects;
  539. *pdwNumISAKMPObjects = dwNumISAKMPObjectsReturned;
  541. dwError = ERROR_SUCCESS;
  543. return(dwError);
  545. error:
  548. if (ppIpsecISAKMPObjects) {
  550. FreeIpsecISAKMPObjects(
  551. ppIpsecISAKMPObjects,
  552. dwNumISAKMPObjectsReturned
  553. );
  554. }
  556. *pppIpsecISAKMPObjects = NULL;
  557. *pdwNumISAKMPObjects = 0;
  560. return(dwError);
  561. }
  565. DWORD
  566. UnMarshallRegistryPolicyObject(
  567. HKEY hRegistryKey,
  568. LPWSTR pszIpsecRegRootContainer,
  569. LPWSTR pszIpsecPolicyDN,
  570. DWORD dwNameType,
  571. PIPSEC_POLICY_OBJECT * ppIpsecPolicyObject
  572. )
  573. {
  575. PIPSEC_POLICY_OBJECT pIpsecPolicyObject = NULL;
  576. HKEY hRegKey = NULL;
  577. DWORD dwType = 0;
  578. DWORD dwSize = 0;
  579. DWORD dwIpsecDataType = 0;
  580. DWORD dwWhenChanged = 0;
  581. LPBYTE pBuffer = NULL;
  583. DWORD i = 0;
  584. DWORD dwCount = 0;
  585. DWORD dwError = 0;
  586. LPWSTR * ppszIpsecNFANames = NULL;
  587. LPWSTR pszIpsecNFAName = NULL;
  588. LPWSTR pszTemp = NULL;
  589. LPWSTR pszString = NULL;
  590. LPWSTR pszIpsecNFAReference = NULL;
  591. LPWSTR pszRelativeName = NULL;
  592. DWORD dwRootPathLen = 0;
  595. if (!pszIpsecPolicyDN || !*pszIpsecPolicyDN) {
  596. dwError = ERROR_INVALID_DATA;
  597. BAIL_ON_WIN32_ERROR(dwError);
  598. }
  600. if (dwNameType == REG_FULLY_QUALIFIED_NAME) {
  601. dwRootPathLen = wcslen(pszIpsecRegRootContainer);
  602. if (wcslen(pszIpsecPolicyDN) <= (dwRootPathLen+1)) {
  603. dwError = ERROR_INVALID_DATA;
  604. BAIL_ON_WIN32_ERROR(dwError);
  605. }
  606. pszRelativeName = pszIpsecPolicyDN + dwRootPathLen + 1;
  607. }else {
  608. pszRelativeName = pszIpsecPolicyDN;
  609. }
  611. dwError = RegOpenKeyExW(
  612. hRegistryKey,
  613. pszRelativeName,
  614. 0,
  615. KEY_ALL_ACCESS,
  616. &hRegKey
  617. );
  618. BAIL_ON_WIN32_ERROR(dwError);
  620. pIpsecPolicyObject = (PIPSEC_POLICY_OBJECT)AllocPolMem(
  621. sizeof(IPSEC_POLICY_OBJECT)
  622. );
  623. if (!pIpsecPolicyObject) {
  624. dwError = ERROR_OUTOFMEMORY;
  625. BAIL_ON_WIN32_ERROR(dwError);
  626. }
  628. /*
  629. dwError = RegstoreQueryValue(
  630. hRegKey,
  631. L"distinguishedName",
  632. REG_SZ,
  633. (LPBYTE *)&pIpsecPolicyObject->pszIpsecOwnersReference,
  634. &dwSize
  635. );
  636. BAIL_ON_WIN32_ERROR(dwError);
  637. */
  640. pIpsecPolicyObject->pszIpsecOwnersReference = AllocPolStr(
  641. pszIpsecPolicyDN
  642. );
  643. if (!pIpsecPolicyObject->pszIpsecOwnersReference) {
  644. dwError = ERROR_OUTOFMEMORY;
  645. BAIL_ON_WIN32_ERROR(dwError);
  646. }
  650. dwError = RegstoreQueryValue(
  651. hRegKey,
  652. L"ipsecName",
  653. REG_SZ,
  654. (LPBYTE *)&pIpsecPolicyObject->pszIpsecName,
  655. &dwSize
  656. );
  657. BAIL_ON_WIN32_ERROR(dwError);
  660. dwError = RegstoreQueryValue(
  661. hRegKey,
  662. L"description",
  663. REG_SZ,
  664. (LPBYTE *)&pIpsecPolicyObject->pszDescription,
  665. &dwSize
  666. );
  667. // BAIL_ON_WIN32_ERROR(dwError);
  670. dwError = RegstoreQueryValue(
  671. hRegKey,
  672. L"ipsecID",
  673. REG_SZ,
  674. (LPBYTE *)&pIpsecPolicyObject->pszIpsecID,
  675. &dwSize
  676. );
  677. BAIL_ON_WIN32_ERROR(dwError);
  680. dwType = REG_DWORD;
  681. dwSize = sizeof(DWORD);
  682. dwError = RegQueryValueExW(
  683. hRegKey,
  684. L"ipsecDataType",
  685. NULL,
  686. &dwType,
  687. (LPBYTE)&dwIpsecDataType,
  688. &dwSize
  689. );
  690. BAIL_ON_WIN32_ERROR(dwError);
  692. pIpsecPolicyObject->dwIpsecDataType = dwIpsecDataType;
  695. dwError = RegstoreQueryValue(
  696. hRegKey,
  697. L"ipsecData",
  698. REG_BINARY,
  699. &pIpsecPolicyObject->pIpsecData,
  700. &pIpsecPolicyObject->dwIpsecDataLen
  701. );
  702. BAIL_ON_WIN32_ERROR(dwError);
  705. dwError = RegstoreQueryValue(
  706. hRegKey,
  707. L"ipsecISAKMPReference",
  708. REG_SZ,
  709. (LPBYTE *)&pIpsecPolicyObject->pszIpsecISAKMPReference,
  710. &dwSize
  711. );
  712. BAIL_ON_WIN32_ERROR(dwError);
  715. dwError = RegstoreQueryValue(
  716. hRegKey,
  717. L"ipsecNFAReference",
  718. REG_MULTI_SZ,
  719. (LPBYTE *)&pszIpsecNFAReference,
  720. &dwSize
  721. );
  722. BAIL_ON_WIN32_ERROR(dwError);
  724. pszTemp = pszIpsecNFAReference;
  725. while (*pszTemp != L'\0') {
  727. pszTemp += wcslen(pszTemp) + 1;
  728. dwCount++;
  729. }
  732. ppszIpsecNFANames = (LPWSTR *)AllocPolMem(
  733. sizeof(LPWSTR)*dwCount
  734. );
  735. if (!ppszIpsecNFANames) {
  736. dwError = ERROR_OUTOFMEMORY;
  737. BAIL_ON_WIN32_ERROR(dwError);
  738. }
  740. pszTemp = pszIpsecNFAReference;
  741. for (i = 0; i < dwCount; i++) {
  743. pszString = AllocPolStr(pszTemp);
  744. if (!pszString) {
  745. dwError = ERROR_OUTOFMEMORY;
  746. pIpsecPolicyObject->ppszIpsecNFAReferences = ppszIpsecNFANames;
  747. pIpsecPolicyObject->NumberofRules = i;
  748. BAIL_ON_WIN32_ERROR(dwError);
  749. }
  751. *(ppszIpsecNFANames + i) = pszString;
  753. pszTemp += wcslen(pszTemp) + 1; //for the null terminator;
  755. }
  757. if (pszIpsecNFAReference) {
  758. FreePolStr(pszIpsecNFAReference);
  759. }
  761. pIpsecPolicyObject->ppszIpsecNFAReferences = ppszIpsecNFANames;
  762. pIpsecPolicyObject->NumberofRules = dwCount;
  764. dwType = REG_DWORD;
  765. dwSize = sizeof(DWORD);
  766. dwError = RegQueryValueExW(
  767. hRegKey,
  768. L"whenChanged",
  769. NULL,
  770. &dwType,
  771. (LPBYTE)&dwWhenChanged,
  772. &dwSize
  773. );
  774. BAIL_ON_WIN32_ERROR(dwError);
  776. pIpsecPolicyObject->dwWhenChanged = dwWhenChanged;
  778. *ppIpsecPolicyObject = pIpsecPolicyObject;
  781. if (hRegKey) {
  782. RegCloseKey(hRegKey);
  783. }
  787. return(dwError);
  789. error:
  791. *ppIpsecPolicyObject = NULL;
  793. if (pszIpsecNFAReference) {
  794. FreePolStr(pszIpsecNFAReference);
  795. }
  797. if (pIpsecPolicyObject) {
  798. FreeIpsecPolicyObject(pIpsecPolicyObject);
  799. }
  802. if (hRegKey) {
  803. RegCloseKey(hRegKey);
  804. }
  808. return(dwError);
  809. }
  811. DWORD
  812. UnMarshallRegistryNFAObject(
  813. HKEY hRegistryKey,
  814. LPWSTR pszIpsecRegRootContainer,
  815. LPWSTR pszIpsecNFAReference,
  816. PIPSEC_NFA_OBJECT * ppIpsecNFAObject,
  817. LPWSTR * ppszFilterReference,
  818. LPWSTR * ppszNegPolReference
  819. )
  820. {
  822. PIPSEC_NFA_OBJECT pIpsecNFAObject = NULL;
  823. HKEY hRegKey = NULL;
  824. DWORD dwType = 0;
  825. DWORD dwSize = 0;
  826. DWORD dwIpsecDataType = 0;
  827. DWORD dwWhenChanged = 0;
  828. LPBYTE pBuffer = NULL;
  830. DWORD i = 0;
  831. DWORD dwCount = 0;
  832. DWORD dwError = 0;
  833. LPWSTR pszTempFilterReference = NULL;
  834. LPWSTR pszTempNegPolReference = NULL;
  836. LPWSTR pszRelativeName = NULL;
  837. DWORD dwRootPathLen = 0;
  839. dwRootPathLen = wcslen(pszIpsecRegRootContainer);
  841. if (!pszIpsecNFAReference || !*pszIpsecNFAReference) {
  842. dwError = ERROR_INVALID_DATA;
  843. BAIL_ON_WIN32_ERROR(dwError);
  844. }
  846. if (wcslen(pszIpsecNFAReference) <= (dwRootPathLen+1)) {
  847. dwError = ERROR_INVALID_DATA;
  848. BAIL_ON_WIN32_ERROR(dwError);
  849. }
  851. pszRelativeName = pszIpsecNFAReference + dwRootPathLen + 1;
  854. dwError = RegOpenKeyExW(
  855. hRegistryKey,
  856. pszRelativeName,
  857. 0,
  858. KEY_ALL_ACCESS,
  859. &hRegKey
  860. );
  861. BAIL_ON_WIN32_ERROR(dwError);
  864. pIpsecNFAObject = (PIPSEC_NFA_OBJECT)AllocPolMem(
  865. sizeof(IPSEC_NFA_OBJECT)
  866. );
  867. if (!pIpsecNFAObject) {
  868. dwError = ERROR_OUTOFMEMORY;
  869. BAIL_ON_WIN32_ERROR(dwError);
  870. }
  872. /*
  873. dwError = RegstoreQueryValue(
  874. hRegKey,
  875. L"distinguishedName",
  876. REG_SZ,
  877. (LPBYTE *)&pIpsecNFAObject->pszDistinguishedName,
  878. &dwSize
  879. );
  880. BAIL_ON_WIN32_ERROR(dwError);
  881. */
  883. pIpsecNFAObject->pszDistinguishedName = AllocPolStr(
  884. pszIpsecNFAReference
  885. );
  886. if (!pIpsecNFAObject->pszDistinguishedName) {
  887. dwError = ERROR_OUTOFMEMORY;
  888. BAIL_ON_WIN32_ERROR(dwError);
  889. }
  891. //
  892. // Client does not always write the Name for an NFA
  893. //
  895. dwError = RegstoreQueryValue(
  896. hRegKey,
  897. L"ipsecName",
  898. REG_SZ,
  899. (LPBYTE *)&pIpsecNFAObject->pszIpsecName,
  900. &dwSize
  901. );
  902. // BAIL_ON_WIN32_ERROR(dwError);
  904. dwError = RegstoreQueryValue(
  905. hRegKey,
  906. L"description",
  907. REG_SZ,
  908. (LPBYTE *)&pIpsecNFAObject->pszDescription,
  909. &dwSize
  910. );
  911. // BAIL_ON_WIN32_ERROR(dwError);
  913. dwError = RegstoreQueryValue(
  914. hRegKey,
  915. L"ipsecID",
  916. REG_SZ,
  917. (LPBYTE *)&pIpsecNFAObject->pszIpsecID,
  918. &dwSize
  919. );
  920. BAIL_ON_WIN32_ERROR(dwError);
  922. dwType = REG_DWORD;
  923. dwSize = sizeof(DWORD);
  924. dwError = RegQueryValueExW(
  925. hRegKey,
  926. L"ipsecDataType",
  927. NULL,
  928. &dwType,
  929. (LPBYTE)&dwIpsecDataType,
  930. &dwSize
  931. );
  932. BAIL_ON_WIN32_ERROR(dwError);
  934. pIpsecNFAObject->dwIpsecDataType = dwIpsecDataType;
  936. //
  937. // unmarshall the ipsecData blob
  938. //
  940. dwError = RegstoreQueryValue(
  941. hRegKey,
  942. L"ipsecData",
  943. REG_BINARY,
  944. &pIpsecNFAObject->pIpsecData,
  945. &pIpsecNFAObject->dwIpsecDataLen
  946. );
  947. BAIL_ON_WIN32_ERROR(dwError);
  949. dwError = RegstoreQueryValue(
  950. hRegKey,
  951. L"ipsecOwnersReference",
  952. REG_SZ,
  953. (LPBYTE *)&pIpsecNFAObject->pszIpsecOwnersReference,
  954. &dwSize
  955. );
  956. // BAIL_ON_WIN32_ERROR(dwError);
  959. dwError = RegstoreQueryValue(
  960. hRegKey,
  961. L"ipsecNegotiationPolicyReference",
  962. REG_SZ,
  963. (LPBYTE *)&pIpsecNFAObject->pszIpsecNegPolReference,
  964. &dwSize
  965. );
  966. BAIL_ON_WIN32_ERROR(dwError);
  969. dwError = RegstoreQueryValue(
  970. hRegKey,
  971. L"ipsecFilterReference",
  972. REG_SZ,
  973. (LPBYTE *)&pIpsecNFAObject->pszIpsecFilterReference,
  974. &dwSize
  975. );
  976. // BAIL_ON_WIN32_ERROR(dwError);
  978. dwType = REG_DWORD;
  979. dwSize = sizeof(DWORD);
  980. dwError = RegQueryValueExW(
  981. hRegKey,
  982. L"whenChanged",
  983. NULL,
  984. &dwType,
  985. (LPBYTE)&dwWhenChanged,
  986. &dwSize
  987. );
  988. BAIL_ON_WIN32_ERROR(dwError);
  990. pIpsecNFAObject->dwWhenChanged = dwWhenChanged;
  992. if (pIpsecNFAObject->pszIpsecFilterReference && *(pIpsecNFAObject->pszIpsecFilterReference)) {
  993. pszTempFilterReference = AllocPolStr(
  994. pIpsecNFAObject->pszIpsecFilterReference
  995. );
  996. if (!pszTempFilterReference) {
  997. dwError = ERROR_OUTOFMEMORY;
  998. BAIL_ON_WIN32_ERROR(dwError);
  999. }
  1000. }
  1001. pszTempNegPolReference = AllocPolStr(
  1002. pIpsecNFAObject->pszIpsecNegPolReference
  1003. );
  1004. if (!pszTempNegPolReference) {
  1005. dwError = ERROR_OUTOFMEMORY;
  1006. BAIL_ON_WIN32_ERROR(dwError);
  1007. }
  1009. *ppszFilterReference = pszTempFilterReference;
  1010. *ppszNegPolReference = pszTempNegPolReference;
  1012. *ppIpsecNFAObject = pIpsecNFAObject;
  1015. cleanup:
  1017. if (hRegKey) {
  1018. RegCloseKey(hRegKey);
  1019. }
  1022. return(dwError);
  1024. error:
  1026. if (pIpsecNFAObject) {
  1028. FreeIpsecNFAObject(pIpsecNFAObject);
  1030. }
  1032. if (pszTempFilterReference) {
  1033. FreePolStr(pszTempFilterReference);
  1034. }
  1036. if (pszTempNegPolReference) {
  1037. FreePolStr(pszTempNegPolReference);
  1038. }
  1040. *ppIpsecNFAObject = NULL;
  1041. *ppszFilterReference = NULL;
  1042. *ppszNegPolReference = NULL;
  1044. goto cleanup;
  1045. }
  1048. DWORD
  1049. UnMarshallRegistryFilterObject(
  1050. HKEY hRegistryKey,
  1051. LPWSTR pszIpsecRegRootContainer,
  1052. LPWSTR pszIpsecFilterReference,
  1053. DWORD dwNameType,
  1054. PIPSEC_FILTER_OBJECT * ppIpsecFilterObject
  1055. )
  1056. {
  1058. PIPSEC_FILTER_OBJECT pIpsecFilterObject = NULL;
  1059. HKEY hRegKey = NULL;
  1060. DWORD dwType = 0;
  1061. DWORD dwSize = 0;
  1062. DWORD dwIpsecDataType = 0;
  1063. DWORD dwWhenChanged = 0;
  1064. LPBYTE pBuffer = NULL;
  1066. DWORD dwCount = 0;
  1067. DWORD i = 0;
  1068. LPWSTR * ppszIpsecNFANames = NULL;
  1069. LPWSTR pszString = NULL;
  1071. LPWSTR pszIpsecNFAReference = NULL;
  1072. LPWSTR pszTemp = NULL;
  1074. DWORD dwError = 0;
  1075. LPWSTR pszRelativeName = NULL;
  1076. DWORD dwRootPathLen = 0;
  1078. if (!pszIpsecFilterReference || !*pszIpsecFilterReference) {
  1079. dwError = ERROR_INVALID_DATA;
  1080. BAIL_ON_WIN32_ERROR(dwError);
  1081. }
  1083. if (dwNameType == REG_FULLY_QUALIFIED_NAME) {
  1084. dwRootPathLen = wcslen(pszIpsecRegRootContainer);
  1085. if (wcslen(pszIpsecFilterReference) <= (dwRootPathLen+1)) {
  1086. dwError = ERROR_INVALID_DATA;
  1087. BAIL_ON_WIN32_ERROR(dwError);
  1088. }
  1089. pszRelativeName = pszIpsecFilterReference + dwRootPathLen + 1;
  1090. }else {
  1091. pszRelativeName = pszIpsecFilterReference;
  1092. }
  1095. dwError = RegOpenKeyExW(
  1096. hRegistryKey,
  1097. pszRelativeName,
  1098. 0,
  1099. KEY_ALL_ACCESS,
  1100. &hRegKey
  1101. );
  1102. BAIL_ON_WIN32_ERROR(dwError);
  1105. pIpsecFilterObject = (PIPSEC_FILTER_OBJECT)AllocPolMem(
  1106. sizeof(IPSEC_FILTER_OBJECT)
  1107. );
  1108. if (!pIpsecFilterObject) {
  1109. dwError = ERROR_OUTOFMEMORY;
  1110. BAIL_ON_WIN32_ERROR(dwError);
  1111. }
  1113. /*
  1114. dwError = RegstoreQueryValue(
  1115. hRegKey,
  1116. L"distinguishedName",
  1117. REG_SZ,
  1118. (LPBYTE *)&pIpsecFilterObject->pszDistinguishedName,
  1119. &dwSize
  1120. );
  1121. BAIL_ON_WIN32_ERROR(dwError);
  1122. */
  1124. pIpsecFilterObject->pszDistinguishedName = AllocPolStr(
  1125. pszIpsecFilterReference
  1126. );
  1127. if (!pIpsecFilterObject->pszDistinguishedName) {
  1128. dwError = ERROR_OUTOFMEMORY;
  1129. BAIL_ON_WIN32_ERROR(dwError);
  1130. }
  1132. dwError = RegstoreQueryValue(
  1133. hRegKey,
  1134. L"description",
  1135. REG_SZ,
  1136. (LPBYTE *)&pIpsecFilterObject->pszDescription,
  1137. &dwSize
  1138. );
  1139. //BAIL_ON_WIN32_ERROR(dwError);
  1141. dwError = RegstoreQueryValue(
  1142. hRegKey,
  1143. L"ipsecName",
  1144. REG_SZ,
  1145. (LPBYTE *)&pIpsecFilterObject->pszIpsecName,
  1146. &dwSize
  1147. );
  1148. //BAIL_ON_WIN32_ERROR(dwError);
  1150. dwError = RegstoreQueryValue(
  1151. hRegKey,
  1152. L"ipsecID",
  1153. REG_SZ,
  1154. (LPBYTE *)&pIpsecFilterObject->pszIpsecID,
  1155. &dwSize
  1156. );
  1157. BAIL_ON_WIN32_ERROR(dwError);
  1159. dwType = REG_DWORD,
  1160. dwSize = sizeof(DWORD);
  1161. dwError = RegQueryValueExW(
  1162. hRegKey,
  1163. L"ipsecDataType",
  1164. NULL,
  1165. &dwType,
  1166. (LPBYTE)&dwIpsecDataType,
  1167. &dwSize
  1168. );
  1169. BAIL_ON_WIN32_ERROR(dwError);
  1171. pIpsecFilterObject->dwIpsecDataType = dwIpsecDataType;
  1174. //
  1175. // unmarshall the ipsecData blob
  1176. //
  1178. dwError = RegstoreQueryValue(
  1179. hRegKey,
  1180. L"ipsecData",
  1181. dwType,
  1182. &pIpsecFilterObject->pIpsecData,
  1183. &pIpsecFilterObject->dwIpsecDataLen
  1184. );
  1185. BAIL_ON_WIN32_ERROR(dwError);
  1187. //
  1188. // Owner's reference
  1189. //
  1191. dwError = RegstoreQueryValue(
  1192. hRegKey,
  1193. L"ipsecOwnersReference",
  1194. REG_MULTI_SZ,
  1195. (LPBYTE *)&pszIpsecNFAReference,
  1196. &dwSize
  1197. );
  1198. //BAIL_ON_WIN32_ERROR(dwError);
  1200. if (!dwError) {
  1202. pszTemp = pszIpsecNFAReference;
  1203. while (*pszTemp != L'\0') {
  1205. pszTemp += wcslen(pszTemp) + 1;
  1206. dwCount++;
  1207. }
  1210. ppszIpsecNFANames = (LPWSTR *)AllocPolMem(
  1211. sizeof(LPWSTR)*dwCount
  1212. );
  1213. if (!ppszIpsecNFANames) {
  1214. dwError = ERROR_OUTOFMEMORY;
  1215. BAIL_ON_WIN32_ERROR(dwError);
  1216. }
  1218. pszTemp = pszIpsecNFAReference;
  1219. for (i = 0; i < dwCount; i++) {
  1221. pszString = AllocPolStr(pszTemp);
  1222. if (!pszString) {
  1223. dwError = ERROR_OUTOFMEMORY;
  1224. pIpsecFilterObject->ppszIpsecNFAReferences = ppszIpsecNFANames;
  1225. pIpsecFilterObject->dwNFACount = i;
  1227. if (pszIpsecNFAReference) {
  1228. FreePolStr(pszIpsecNFAReference);
  1229. }
  1231. BAIL_ON_WIN32_ERROR(dwError);
  1233. }
  1235. *(ppszIpsecNFANames + i) = pszString;
  1237. pszTemp += wcslen(pszTemp) + 1; //for the null terminator;
  1239. }
  1240. if (pszIpsecNFAReference) {
  1241. FreePolStr(pszIpsecNFAReference);
  1242. }
  1245. pIpsecFilterObject->ppszIpsecNFAReferences = ppszIpsecNFANames;
  1246. pIpsecFilterObject->dwNFACount = dwCount;
  1249. }
  1251. dwType = REG_DWORD;
  1252. dwSize = sizeof(DWORD);
  1253. dwError = RegQueryValueExW(
  1254. hRegKey,
  1255. L"whenChanged",
  1256. NULL,
  1257. &dwType,
  1258. (LPBYTE)&dwWhenChanged,
  1259. &dwSize
  1260. );
  1261. BAIL_ON_WIN32_ERROR(dwError);
  1263. pIpsecFilterObject->dwWhenChanged = dwWhenChanged;
  1266. *ppIpsecFilterObject = pIpsecFilterObject;
  1269. cleanup:
  1271. if (hRegKey) {
  1273. RegCloseKey(hRegKey);
  1274. }
  1276. return(dwError);
  1278. error:
  1280. if (pIpsecFilterObject) {
  1282. FreeIpsecFilterObject(pIpsecFilterObject);
  1284. }
  1286. *ppIpsecFilterObject = NULL;
  1288. goto cleanup;
  1289. }
  1292. DWORD
  1293. UnMarshallRegistryNegPolObject(
  1294. HKEY hRegistryKey,
  1295. LPWSTR pszIpsecRegRootContainer,
  1296. LPWSTR pszIpsecNegPolReference,
  1297. DWORD dwNameType,
  1298. PIPSEC_NEGPOL_OBJECT * ppIpsecNegPolObject
  1299. )
  1300. {
  1302. PIPSEC_NEGPOL_OBJECT pIpsecNegPolObject = NULL;
  1303. HKEY hRegKey = NULL;
  1304. DWORD dwType = 0;
  1305. DWORD dwSize = 0;
  1306. DWORD dwIpsecDataType = 0;
  1307. DWORD dwWhenChanged = 0;
  1308. LPBYTE pBuffer = NULL;
  1310. DWORD dwCount = 0;
  1311. DWORD i = 0;
  1312. LPWSTR * ppszIpsecNFANames = NULL;
  1313. LPWSTR pszString = NULL;
  1315. LPWSTR pszIpsecNFAReference = NULL;
  1316. LPWSTR pszTemp = NULL;
  1318. DWORD dwError = 0;
  1320. LPWSTR pszRelativeName = NULL;
  1321. DWORD dwRootPathLen = 0;
  1323. if (!pszIpsecNegPolReference || !*pszIpsecNegPolReference) {
  1324. dwError = ERROR_INVALID_DATA;
  1325. BAIL_ON_WIN32_ERROR(dwError);
  1326. }
  1328. if (dwNameType == REG_FULLY_QUALIFIED_NAME) {
  1329. dwRootPathLen = wcslen(pszIpsecRegRootContainer);
  1330. if (wcslen(pszIpsecNegPolReference) <= (dwRootPathLen+1)) {
  1331. dwError = ERROR_INVALID_DATA;
  1332. BAIL_ON_WIN32_ERROR(dwError);
  1333. }
  1334. pszRelativeName = pszIpsecNegPolReference + dwRootPathLen + 1;
  1335. }else {
  1336. pszRelativeName = pszIpsecNegPolReference;
  1337. }
  1339. dwError = RegOpenKeyExW(
  1340. hRegistryKey,
  1341. pszRelativeName,
  1342. 0,
  1343. KEY_ALL_ACCESS,
  1344. &hRegKey
  1345. );
  1346. BAIL_ON_WIN32_ERROR(dwError);
  1349. pIpsecNegPolObject = (PIPSEC_NEGPOL_OBJECT)AllocPolMem(
  1350. sizeof(IPSEC_NEGPOL_OBJECT)
  1351. );
  1352. if (!pIpsecNegPolObject) {
  1353. dwError = ERROR_OUTOFMEMORY;
  1354. BAIL_ON_WIN32_ERROR(dwError);
  1355. }
  1357. /*
  1358. dwError = RegstoreQueryValue(
  1359. hRegKey,
  1360. L"distinguishedName",
  1361. REG_SZ,
  1362. (LPBYTE *)&pIpsecNegPolObject->pszDistinguishedName,
  1363. &dwSize
  1364. );
  1365. BAIL_ON_WIN32_ERROR(dwError);
  1366. */
  1368. pIpsecNegPolObject->pszDistinguishedName = AllocPolStr(
  1369. pszIpsecNegPolReference
  1370. );
  1371. if (!pIpsecNegPolObject->pszDistinguishedName) {
  1372. dwError = ERROR_OUTOFMEMORY;
  1373. BAIL_ON_WIN32_ERROR(dwError);
  1374. }
  1376. //
  1377. // Names do not get written on an NegPol Object
  1378. //
  1380. dwError = RegstoreQueryValue(
  1381. hRegKey,
  1382. L"ipsecName",
  1383. REG_SZ,
  1384. (LPBYTE *)&pIpsecNegPolObject->pszIpsecName,
  1385. &dwSize
  1386. );
  1387. // BAIL_ON_WIN32_ERROR(dwError);
  1390. dwError = RegstoreQueryValue(
  1391. hRegKey,
  1392. L"description",
  1393. REG_SZ,
  1394. (LPBYTE *)&pIpsecNegPolObject->pszDescription,
  1395. &dwSize
  1396. );
  1397. // BAIL_ON_WIN32_ERROR(dwError);
  1401. dwError = RegstoreQueryValue(
  1402. hRegKey,
  1403. L"ipsecID",
  1404. REG_SZ,
  1405. (LPBYTE *)&pIpsecNegPolObject->pszIpsecID,
  1406. &dwSize
  1407. );
  1408. BAIL_ON_WIN32_ERROR(dwError);
  1410. dwError = RegstoreQueryValue(
  1411. hRegKey,
  1412. L"ipsecNegotiationPolicyAction",
  1413. REG_SZ,
  1414. (LPBYTE *)&pIpsecNegPolObject->pszIpsecNegPolAction,
  1415. &dwSize
  1416. );
  1417. BAIL_ON_WIN32_ERROR(dwError);
  1419. dwError = RegstoreQueryValue(
  1420. hRegKey,
  1421. L"ipsecNegotiationPolicyType",
  1422. REG_SZ,
  1423. (LPBYTE *)&pIpsecNegPolObject->pszIpsecNegPolType,
  1424. &dwSize
  1425. );
  1426. BAIL_ON_WIN32_ERROR(dwError);
  1428. dwType = REG_DWORD;
  1429. dwSize = sizeof(DWORD);
  1430. dwError = RegQueryValueExW(
  1431. hRegKey,
  1432. L"ipsecDataType",
  1433. NULL,
  1434. &dwType,
  1435. (LPBYTE)&dwIpsecDataType,
  1436. &dwSize
  1437. );
  1438. BAIL_ON_WIN32_ERROR(dwError);
  1440. pIpsecNegPolObject->dwIpsecDataType = dwIpsecDataType;
  1443. dwError = RegstoreQueryValue(
  1444. hRegKey,
  1445. L"ipsecData",
  1446. REG_BINARY,
  1447. &pIpsecNegPolObject->pIpsecData,
  1448. &pIpsecNegPolObject->dwIpsecDataLen
  1449. );
  1450. BAIL_ON_WIN32_ERROR(dwError);
  1452. dwError = RegstoreQueryValue(
  1453. hRegKey,
  1454. L"ipsecOwnersReference",
  1455. REG_MULTI_SZ,
  1456. (LPBYTE *)&pszIpsecNFAReference,
  1457. &dwSize
  1458. );
  1459. // BAIL_ON_WIN32_ERROR(dwError);
  1461. if (!dwError) {
  1463. pszTemp = pszIpsecNFAReference;
  1464. while (*pszTemp != L'\0') {
  1466. pszTemp += wcslen(pszTemp) + 1;
  1467. dwCount++;
  1468. }
  1471. ppszIpsecNFANames = (LPWSTR *)AllocPolMem(
  1472. sizeof(LPWSTR)*dwCount
  1473. );
  1474. if (!ppszIpsecNFANames) {
  1475. dwError = ERROR_OUTOFMEMORY;
  1476. BAIL_ON_WIN32_ERROR(dwError);
  1477. }
  1479. pszTemp = pszIpsecNFAReference;
  1480. for (i = 0; i < dwCount; i++) {
  1482. pszString = AllocPolStr(pszTemp);
  1483. if (!pszString) {
  1484. dwError = ERROR_OUTOFMEMORY;
  1485. pIpsecNegPolObject->ppszIpsecNFAReferences = ppszIpsecNFANames;
  1486. pIpsecNegPolObject->dwNFACount = i;
  1489. if (pszIpsecNFAReference) {
  1490. FreePolStr(pszIpsecNFAReference);
  1491. }
  1493. BAIL_ON_WIN32_ERROR(dwError);
  1494. }
  1496. *(ppszIpsecNFANames + i) = pszString;
  1498. pszTemp += wcslen(pszTemp) + 1; //for the null terminator;
  1500. }
  1502. if (pszIpsecNFAReference) {
  1503. FreePolStr(pszIpsecNFAReference);
  1504. }
  1507. pIpsecNegPolObject->ppszIpsecNFAReferences = ppszIpsecNFANames;
  1508. pIpsecNegPolObject->dwNFACount = dwCount;
  1509. }
  1511. dwType = REG_DWORD;
  1512. dwSize = sizeof(DWORD);
  1513. dwError = RegQueryValueExW(
  1514. hRegKey,
  1515. L"whenChanged",
  1516. NULL,
  1517. &dwType,
  1518. (LPBYTE)&dwWhenChanged,
  1519. &dwSize
  1520. );
  1521. BAIL_ON_WIN32_ERROR(dwError);
  1523. pIpsecNegPolObject->dwWhenChanged = dwWhenChanged;
  1527. *ppIpsecNegPolObject = pIpsecNegPolObject;
  1530. cleanup:
  1532. if (hRegKey) {
  1533. RegCloseKey(hRegKey);
  1534. }
  1537. return(dwError);
  1539. error:
  1541. if (pIpsecNegPolObject) {
  1543. FreeIpsecNegPolObject(pIpsecNegPolObject);
  1545. }
  1547. *ppIpsecNegPolObject = NULL;
  1549. goto cleanup;
  1550. }
  1552. DWORD
  1553. UnMarshallRegistryISAKMPObject(
  1554. HKEY hRegistryKey,
  1555. LPWSTR pszIpsecRegRootContainer,
  1556. LPWSTR pszIpsecISAKMPReference,
  1557. DWORD dwNameType,
  1558. PIPSEC_ISAKMP_OBJECT * ppIpsecISAKMPObject
  1559. )
  1560. {
  1562. PIPSEC_ISAKMP_OBJECT pIpsecISAKMPObject = NULL;
  1563. HKEY hRegKey = NULL;
  1564. DWORD dwType = 0;
  1565. DWORD dwSize = 0;
  1566. DWORD dwIpsecDataType = 0;
  1567. DWORD dwWhenChanged = 0;
  1568. LPBYTE pBuffer = NULL;
  1570. DWORD dwCount = 0;
  1571. DWORD i = 0;
  1572. LPWSTR * ppszIpsecNFANames = NULL;
  1573. LPWSTR pszString = NULL;
  1575. LPWSTR pszIpsecNFAReference = NULL;
  1576. LPWSTR pszTemp = NULL;
  1578. DWORD dwError = 0;
  1581. LPWSTR pszRelativeName = NULL;
  1582. DWORD dwRootPathLen = 0;
  1584. if (!pszIpsecISAKMPReference || !*pszIpsecISAKMPReference) {
  1585. dwError = ERROR_INVALID_DATA;
  1586. BAIL_ON_WIN32_ERROR(dwError);
  1587. }
  1589. if (dwNameType == REG_FULLY_QUALIFIED_NAME) {
  1590. dwRootPathLen = wcslen(pszIpsecRegRootContainer);
  1591. if (wcslen(pszIpsecISAKMPReference) <= (dwRootPathLen+1)) {
  1592. dwError = ERROR_INVALID_DATA;
  1593. BAIL_ON_WIN32_ERROR(dwError);
  1594. }
  1595. pszRelativeName = pszIpsecISAKMPReference + dwRootPathLen + 1;
  1596. }else {
  1597. pszRelativeName = pszIpsecISAKMPReference;
  1598. }
  1601. dwError = RegOpenKeyExW(
  1602. hRegistryKey,
  1603. pszRelativeName,
  1604. 0,
  1605. KEY_ALL_ACCESS,
  1606. &hRegKey
  1607. );
  1608. BAIL_ON_WIN32_ERROR(dwError);
  1611. pIpsecISAKMPObject = (PIPSEC_ISAKMP_OBJECT)AllocPolMem(
  1612. sizeof(IPSEC_ISAKMP_OBJECT)
  1613. );
  1614. if (!pIpsecISAKMPObject) {
  1615. dwError = ERROR_OUTOFMEMORY;
  1616. BAIL_ON_WIN32_ERROR(dwError);
  1617. }
  1619. /*
  1620. dwError = RegstoreQueryValue(
  1621. hRegKey,
  1622. L"distinguishedName",
  1623. REG_SZ,
  1624. (LPBYTE *)&pIpsecISAKMPObject->pszDistinguishedName,
  1625. &dwSize
  1626. );
  1627. BAIL_ON_WIN32_ERROR(dwError);
  1628. */
  1630. pIpsecISAKMPObject->pszDistinguishedName = AllocPolStr(
  1631. pszIpsecISAKMPReference
  1632. );
  1633. if (!pIpsecISAKMPObject->pszDistinguishedName) {
  1634. dwError = ERROR_OUTOFMEMORY;
  1635. BAIL_ON_WIN32_ERROR(dwError);
  1636. }
  1638. //
  1639. // Names are not set for ISAKMP objects
  1640. //
  1642. dwError = RegstoreQueryValue(
  1643. hRegKey,
  1644. L"ipsecName",
  1645. REG_SZ,
  1646. (LPBYTE *)&pIpsecISAKMPObject->pszIpsecName,
  1647. &dwSize
  1648. );
  1649. // BAIL_ON_WIN32_ERROR(dwError);
  1651. dwError = RegstoreQueryValue(
  1652. hRegKey,
  1653. L"ipsecID",
  1654. REG_SZ,
  1655. (LPBYTE *)&pIpsecISAKMPObject->pszIpsecID,
  1656. &dwSize
  1657. );
  1658. BAIL_ON_WIN32_ERROR(dwError);
  1660. dwType = REG_DWORD,
  1661. dwSize = sizeof(DWORD);
  1662. dwError = RegQueryValueExW(
  1663. hRegKey,
  1664. L"ipsecDataType",
  1665. NULL,
  1666. &dwType,
  1667. (LPBYTE)&dwIpsecDataType,
  1668. &dwSize
  1669. );
  1670. BAIL_ON_WIN32_ERROR(dwError);
  1672. pIpsecISAKMPObject->dwIpsecDataType = dwIpsecDataType;
  1675. //
  1676. // unmarshall the ipsecData blob
  1677. //
  1678. dwError = RegstoreQueryValue(
  1679. hRegKey,
  1680. L"ipsecData",
  1681. REG_BINARY,
  1682. &pIpsecISAKMPObject->pIpsecData,
  1683. &pIpsecISAKMPObject->dwIpsecDataLen
  1684. );
  1685. BAIL_ON_WIN32_ERROR(dwError);
  1688. //
  1689. // ipsecOwnersReference not written
  1690. //
  1693. dwError = RegstoreQueryValue(
  1694. hRegKey,
  1695. L"ipsecOwnersReference",
  1696. REG_MULTI_SZ,
  1697. (LPBYTE *)&pszIpsecNFAReference,
  1698. &dwSize
  1699. );
  1700. // BAIL_ON_WIN32_ERROR(dwError);
  1703. if (!dwError) {
  1705. pszTemp = pszIpsecNFAReference;
  1706. while (*pszTemp != L'\0') {
  1708. pszTemp += wcslen(pszTemp) + 1;
  1709. dwCount++;
  1710. }
  1713. ppszIpsecNFANames = (LPWSTR *)AllocPolMem(
  1714. sizeof(LPWSTR)*dwCount
  1715. );
  1716. if (!ppszIpsecNFANames) {
  1717. dwError = ERROR_OUTOFMEMORY;
  1718. BAIL_ON_WIN32_ERROR(dwError);
  1719. }
  1721. pszTemp = pszIpsecNFAReference;
  1722. for (i = 0; i < dwCount; i++) {
  1724. pszString = AllocPolStr(pszTemp);
  1725. if (!pszString) {
  1726. dwError = ERROR_OUTOFMEMORY;
  1727. pIpsecISAKMPObject->ppszIpsecNFAReferences = ppszIpsecNFANames;
  1728. pIpsecISAKMPObject->dwNFACount = i;
  1730. if (pszIpsecNFAReference) {
  1731. FreePolStr(pszIpsecNFAReference);
  1732. }
  1736. BAIL_ON_WIN32_ERROR(dwError);
  1737. }
  1739. *(ppszIpsecNFANames + i) = pszString;
  1741. pszTemp += wcslen(pszTemp) + 1; //for the null terminator;
  1743. }
  1745. if (pszIpsecNFAReference) {
  1746. FreePolStr(pszIpsecNFAReference);
  1747. }
  1749. pIpsecISAKMPObject->ppszIpsecNFAReferences = ppszIpsecNFANames;
  1750. pIpsecISAKMPObject->dwNFACount = dwCount;
  1751. }
  1753. dwType = REG_DWORD;
  1754. dwSize = sizeof(DWORD);
  1755. dwError = RegQueryValueExW(
  1756. hRegKey,
  1757. L"whenChanged",
  1758. NULL,
  1759. &dwType,
  1760. (LPBYTE)&dwWhenChanged,
  1761. &dwSize
  1762. );
  1763. BAIL_ON_WIN32_ERROR(dwError);
  1765. pIpsecISAKMPObject->dwWhenChanged = dwWhenChanged;
  1768. *ppIpsecISAKMPObject = pIpsecISAKMPObject;
  1771. cleanup:
  1773. if (hRegKey) {
  1774. RegCloseKey(hRegKey);
  1775. }
  1778. return(dwError);
  1780. error:
  1782. if (pIpsecISAKMPObject) {
  1784. FreeIpsecISAKMPObject(pIpsecISAKMPObject);
  1786. }
  1788. *ppIpsecISAKMPObject = NULL;
  1790. goto cleanup;
  1791. }
  1794. DWORD
  1795. RegstoreQueryValue(
  1796. HKEY hRegKey,
  1797. LPWSTR pszValueName,
  1798. DWORD dwType,
  1799. LPBYTE * ppValueData,
  1800. LPDWORD pdwSize
  1801. )
  1802. {
  1803. DWORD dwSize = 0;
  1804. LPWSTR pszValueData = NULL;
  1805. DWORD dwError = 0;
  1806. LPBYTE pBuffer = NULL;
  1807. LPWSTR pszBuf = NULL;
  1810. dwError = RegQueryValueExW(
  1811. hRegKey,
  1812. pszValueName,
  1813. NULL,
  1814. &dwType,
  1815. NULL,
  1816. &dwSize
  1817. );
  1818. BAIL_ON_WIN32_ERROR(dwError);
  1820. if (dwSize == 0) {
  1821. dwError = ERROR_INVALID_DATA;
  1822. BAIL_ON_WIN32_ERROR(dwError);
  1823. }
  1825. pBuffer = (LPBYTE)AllocPolMem(dwSize);
  1826. if (!pBuffer) {
  1828. dwError = ERROR_OUTOFMEMORY;
  1829. BAIL_ON_WIN32_ERROR(dwError);
  1830. }
  1832. dwError = RegQueryValueExW(
  1833. hRegKey,
  1834. pszValueName,
  1835. NULL,
  1836. &dwType,
  1837. pBuffer,
  1838. &dwSize
  1839. );
  1840. BAIL_ON_WIN32_ERROR(dwError);
  1845. switch (dwType) {
  1846. case REG_SZ:
  1847. pszBuf = (LPWSTR) pBuffer;
  1848. if (!pszBuf || !*pszBuf) {
  1849. dwError = ERROR_INVALID_DATA;
  1850. BAIL_ON_WIN32_ERROR(dwError);
  1851. }
  1852. break;
  1854. default:
  1855. break;
  1856. }
  1858. *ppValueData = pBuffer;
  1859. *pdwSize = dwSize;
  1860. return(dwError);
  1862. error:
  1864. if (pBuffer) {
  1865. FreePolMem(pBuffer);
  1866. }
  1868. *ppValueData = NULL;
  1869. *pdwSize = 0;
  1870. return(dwError);
  1871. }
  1874. VOID
  1875. FlushRegSaveKey(
  1876. HKEY hRegistryKey
  1877. )
  1878. {
  1879. DWORD dwError = 0;
  1880. WCHAR lpszName[MAX_PATH];
  1881. DWORD dwSize = 0;
  1884. memset(lpszName, 0, sizeof(WCHAR)*MAX_PATH);
  1885. dwSize = MAX_PATH;
  1887. while((RegEnumKeyExW(
  1888. hRegistryKey,
  1889. 0,
  1890. lpszName,
  1891. &dwSize,
  1892. NULL,
  1893. NULL,
  1894. NULL,
  1895. NULL)) == ERROR_SUCCESS) {
  1897. dwError = RegDeleteKeyW(
  1898. hRegistryKey,
  1899. lpszName
  1900. );
  1901. if (dwError != ERROR_SUCCESS) {
  1902. break;
  1903. }
  1905. memset(lpszName, 0, sizeof(WCHAR)*MAX_PATH);
  1906. dwSize = MAX_PATH;
  1908. }
  1910. return;
  1911. }