archive
/
windows-xp
mirror of https://github.com/tongzx/nt5src
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Source code of Windows XP (NT5)
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
6 Commits
1 Branch
0 Tags
2.0 GiB
Tree: daad8a087a
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'daad8a087a'
${ noResults }
windows-xp/Source/XPSP1/NT/net/upnp/host/common/uhcommon.cpp

322 lines
8.1 KiB
Raw Normal View History

Add source files
4 years ago
  1. //+---------------------------------------------------------------------------
  2. //
  3. // Microsoft Windows
  4. // Copyright (C) Microsoft Corporation, 2000.
  5. //
  6. // File: U H C O M M O N . C P P
  7. //
  8. // Contents: Common UPnP Device Host code
  9. //
  10. // Notes:
  11. //
  12. // Author: mbend 21 Sep 2000
  13. //
  14. //----------------------------------------------------------------------------
  16. #include "pch.h"
  17. #pragma hdrstop
  19. #include "ncbase.h"
  20. #include "uhcommon.h"
  22. static PSID g_pNetworkSid;
  24. HRESULT HrUDNStringToGUID(const wchar_t * szUUID, UUID & uuid)
  25. {
  26. HRESULT hr = S_OK;
  27. // Size of uuid:UUID
  28. const long nUDNStringLength = 41;
  29. // Size of uuid: prefix
  30. const long nUDNPrefix = 5;
  32. if(nUDNStringLength != lstrlen(szUUID))
  33. {
  34. TraceTag(ttidError, "GUIDFromString: Invalid GUID string");
  35. hr = E_INVALIDARG;
  36. }
  37. if(SUCCEEDED(hr))
  38. {
  39. // Skip past "uuid:"
  40. RPC_STATUS status;
  41. status = UuidFromString((unsigned short *)(const_cast<wchar_t*>(&szUUID[nUDNPrefix])), &uuid);
  42. if(RPC_S_INVALID_STRING_UUID == status)
  43. {
  44. TraceTag(ttidError, "GUIDFromString: Invalid GUID string");
  45. hr = E_INVALIDARG;
  46. }
  47. }
  49. TraceHr(ttidError, FAL, hr, FALSE, "HrUDNStringToGUID");
  50. return hr;
  51. }
  53. HRESULT HrContentURLToGUID(const wchar_t * szURL, GUID & guid)
  54. {
  55. HRESULT hr = S_OK;
  57. const wchar_t * sz = szURL;
  58. while (*sz && *sz != '=')
  59. {
  60. sz++;
  61. }
  63. if (*sz == '=')
  64. {
  65. sz++;
  66. hr = HrUDNStringToGUID(sz, guid);
  67. }
  69. TraceHr(ttidError, FAL, hr, FALSE, "HrContentURLToGUID");
  70. return hr;
  71. }
  73. //+---------------------------------------------------------------------------
  74. //
  75. // Function: HrSysAllocString
  76. //
  77. // Purpose: Simple HR wrapper for HrSysAllocString
  78. //
  79. // Arguments:
  80. // pszSource [in] Source string (WCHAR)
  81. // pbstrDest [out] Output param -- pointer to BSTR
  82. //
  83. // Returns: S_OK on success, E_OUTOFMEMORY if the alloc failed.
  84. //
  85. // Author: jeffspr 16 Sep 1999
  86. //
  87. // Notes:
  88. //
  89. HRESULT HrSysAllocString(LPCWSTR pszSource, BSTR *pbstrDest)
  90. {
  91. HRESULT hr = S_OK;
  93. Assert(pszSource);
  94. Assert(pbstrDest);
  96. *pbstrDest = SysAllocString(pszSource);
  97. if (!*pbstrDest)
  98. {
  99. TraceTag(ttidError, "HrSysAllocString failed on %S", pszSource);
  100. hr = E_OUTOFMEMORY;
  101. }
  103. TraceHr(ttidError, FAL, hr, FALSE, "HrSysAllocString");
  104. return hr;
  105. }
  109. //+---------------------------------------------------------------------------
  110. //
  111. // Function: HrIsAllowedCOMCallLocality
  112. //
  113. // Purpose: Used to check whether the caller of a method on a COM interface
  114. // should be allowed to call that method, based on whether it's
  115. // a call from the local machine or across the network
  116. //
  117. // Arguments:
  118. // clAllowedCallLocality - bitmask of allowed COM call localities
  119. //
  120. // Returns :
  121. // E_ACCESSDENIED if access is denied, S_OK if access is granted, error HRESULT otherwise.
  122. //
  123. // Author: AMallet 15 Mar 2002
  124. //
  125. HRESULT HrIsAllowedCOMCallLocality( IN CALL_LOCALITY clAllowedCallLocality )
  126. {
  127. HRESULT hr = S_OK;
  128. CALL_LOCALITY clCurrentCallLocality;
  130. //
  131. // Retrieve the current call locality
  132. //
  133. if ( FAILED( hr = HrGetCurrentCallLocality( &clCurrentCallLocality ) ))
  134. {
  135. TraceHr(ttidRegistrar,FAL, hr, FALSE,"HrGetCurrentCallLocality");
  136. }
  137. else
  138. {
  139. //
  140. // If current call locality isn't one of the allowed ones, deny access
  141. //
  142. if ( ( clCurrentCallLocality & clAllowedCallLocality ) == 0 )
  143. {
  144. TraceTag(ttidRegistrar, "Caller locality %d, granted locality %d, access denied.",
  145. clCurrentCallLocality, clAllowedCallLocality);
  146. hr = E_ACCESSDENIED;
  147. }
  148. }
  150. return hr;
  151. }
  154. //+---------------------------------------------------------------------------
  155. //
  156. // Function: HrGetCurrentCallLocality
  157. //
  158. // Purpose: Checks locality (in-proc, on same machine, on different machine) of
  159. // caller of a COM method
  160. //
  161. // Arguments:
  162. // pclCurrentCallLocality [out] - set to
  163. //
  164. // Author: radus 7 Mar 2002
  165. //
  166. // Notes: Currently implemented by checking the existence of the NETWORK
  167. // SID in the impersonation token of the calling thread
  169. HRESULT HrGetCurrentCallLocality( OUT CALL_LOCALITY *pclCurrentCallLocality )
  170. {
  171. HRESULT hr = S_OK;
  172. HANDLE hToken = NULL;
  173. BOOL fImpersonated = FALSE;
  175. if ( !pclCurrentCallLocality || !g_pNetworkSid )
  176. {
  177. return E_INVALIDARG;
  178. }
  180. //
  181. // Impersonate client
  182. //
  183. hr = CoImpersonateClient();
  185. if(SUCCEEDED(hr))
  186. {
  187. fImpersonated = TRUE;
  189. //
  190. // open impersonation token
  191. //
  192. if( OpenThreadToken(
  193. GetCurrentThread(),
  194. TOKEN_QUERY,
  195. TRUE,
  196. &hToken))
  197. {
  198. //
  199. // Check whether the token has the NETWORK SID in it; if it does,
  200. // assume the caller is on a different machine. Else, the caller
  201. // is on the local machine.
  202. //
  203. // Note : This isn't entirely foolproof in that it's possible for a local
  204. // user's token to also have the NETWORK SID eg if they called LsaLogonUser
  205. // with the Network LogonType, but it's the best we can do for XP SP1.
  206. // COM may have a way to get more accurate information for .NET Server.
  207. //
  208. BOOL fIsMember;
  210. if( CheckTokenMembership(
  211. hToken,
  212. g_pNetworkSid,
  213. &fIsMember))
  214. {
  215. if ( fIsMember )
  216. {
  217. *pclCurrentCallLocality = CALL_LOCALITY_DIFFERENTMACHINE;
  218. }
  219. else
  220. {
  221. *pclCurrentCallLocality = (CALL_LOCALITY)
  222. ( CALL_LOCALITY_LOCAL | CALL_LOCALITY_INPROC );
  223. }
  224. }
  225. else
  226. {
  227. hr = HrFromLastWin32Error();
  229. TraceHr(ttidRegistrar, FAL, hr, FALSE, "CheckTokenMembership");
  230. }
  231. }
  232. else
  233. {
  234. hr = HrFromLastWin32Error();
  236. TraceHr(ttidRegistrar, FAL, hr, FALSE, "OpenThreadToken");
  237. }
  238. }
  239. else
  240. {
  241. //
  242. // If the COM call is a direct in-proc v-tbl call, with no proxy, the call to
  243. // CoImpersonateClient will return RPC_E_CALL_COMPLETE; in this case,
  244. // we know the caller is in-proc to us
  245. //
  246. if ( hr == RPC_E_CALL_COMPLETE )
  247. {
  248. *pclCurrentCallLocality = CALL_LOCALITY_INPROC;
  249. hr = S_OK;
  250. }
  251. else
  252. {
  253. TraceHr(ttidRegistrar,FAL, hr, FALSE, "CoImpersonateClient");
  254. }
  255. }
  257. if ( hToken )
  258. {
  259. CloseHandle( hToken );
  260. }
  262. if ( fImpersonated )
  263. {
  264. CoRevertToSelf();
  265. }
  267. TraceHr(ttidRegistrar, FAL, hr, FALSE, "HrCheckAccessRights");
  268. return hr;
  269. }
  271. //+---------------------------------------------------------------------------
  272. //
  273. // Function: HrCreateNetworkSID
  274. //
  275. // Purpose: Allocates and initializes a SID structure with the NETWORK SID
  276. //
  277. // Arguments:
  278. // None
  279. //
  280. // Author: AMallet 16 Mar 2002
  281. //
  283. HRESULT HrCreateNetworkSID()
  284. {
  285. HRESULT hr = S_OK;
  286. SID_IDENTIFIER_AUTHORITY id = SECURITY_NT_AUTHORITY;
  288. //
  289. // Allocate the NETWORK SID
  290. //
  291. if( !AllocateAndInitializeSid(
  292. &id,
  293. 1,
  294. SECURITY_NETWORK_RID,
  295. 0,0,0,0,0,0,0,
  296. &g_pNetworkSid ) ) // S-1-5-2
  297. {
  298. hr = HrFromLastWin32Error();
  299. TraceHr(ttidError, FAL, hr, FALSE, "AllocateAndInitializeSid");
  300. }
  302. return hr;
  303. }
  305. //+---------------------------------------------------------------------------
  306. //
  307. // Function: CleanupNetworkSID
  308. //
  309. // Purpose: Cleans up the NETWORK SID allocated via call to HrCreateNetworkSID
  310. //
  311. // Arguments:
  312. // None
  313. //
  314. // Author: AMallet 16 Mar 2002
  315. //
  316. VOID CleanupNetworkSID()
  317. {
  318. if ( g_pNetworkSid )
  319. {
  320. FreeSid( g_pNetworkSid );
  321. }
  322. }