Context Navigation

winsec.c @ 147

Last change on this file since 147 was 147, checked in by tim, 15 years ago

added talloc library

incorporated talloc into winsec and lru_cache modules

introduced talloc into SK caching system

Property svn:keywords set to Id

File size: 14.2 KB

Line
1	/*
2	* This file contains refactored Samba code used to interpret Windows
3	* Security Descriptors. See:
4	* http://websvn.samba.org/cgi-bin/viewcvs.cgi/trunk/source/
5	*
6	* Copyright (C) 2005-2006,2009 Timothy D. Morgan
7	* Copyright (C) 1992-2005 Samba development team
8	* (see individual files under Subversion for details.)
9	*
10	* This program is free software; you can redistribute it and/or modify
11	* it under the terms of the GNU General Public License as published by
12	* the Free Software Foundation; version 3 of the License.
13	*
14	* This program is distributed in the hope that it will be useful,
15	* but WITHOUT ANY WARRANTY; without even the implied warranty of
16	* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
17	* GNU General Public License for more details.
18	*
19	* You should have received a copy of the GNU General Public License
20	* along with this program; if not, write to the Free Software
21	* Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
22	*
23	* $Id: winsec.c 147 2009-02-22 19:31:52Z tim $
24	*/
25
26	#include "winsec.h"
27
28
29	/******************************************************************************
30	* Non-talloc() interface for parsing a descriptor.
31	******************************************************************************/
32	WINSEC_DESC* winsec_parse_descriptor(const uint8_t* buf, uint32_t buf_len)
33	{
34	return winsec_parse_desc(NULL, buf, buf_len);
35	}
36
37
38	/******************************************************************************
39	* Free a descriptor. Not needed if using talloc and a parent context is freed.
40	******************************************************************************/
41	void winsec_free_descriptor(WINSEC_DESC* desc)
42	{
43	talloc_free(desc);
44	}
45
46
47	/******************************************************************************
48	* Parses a WINSEC_DESC structure and substructures.
49	******************************************************************************/
50	WINSEC_DESC* winsec_parse_desc(void* talloc_ctx,
51	const uint8_t* buf, uint32_t buf_len)
52	{
53	WINSEC_DESC* ret_val;
54
55	if (buf == NULL \|\| buf_len < WINSEC_DESC_HEADER_SIZE)
56	return NULL;
57	/*
58	if((ret_val = (WINSEC_DESC*)zalloc(sizeof(WINSEC_DESC))) == NULL)
59	return NULL;
60	*/
61	if((ret_val = talloc(talloc_ctx, WINSEC_DESC)) == NULL)
62	return NULL;
63
64	ret_val->revision = buf[0];
65	ret_val->sbz1 = buf[1];
66	ret_val->control = SVAL(buf, 0x2);
67
68	if(!(ret_val->control & WINSEC_DESC_SELF_RELATIVE))
69	fprintf(stderr, "DEBUG: NOT self-relative!\n");
70
71	ret_val->off_owner_sid = IVAL(buf, 0x4);
72	ret_val->off_grp_sid = IVAL(buf, 0x8);
73	ret_val->off_sacl = IVAL(buf, 0xC);
74	ret_val->off_dacl = IVAL(buf, 0x10);
75
76	/* A basic sanity check to ensure our offsets are within our buffer.
77	* Additional length checking is done in secondary parsing functions.
78	*/
79	if((ret_val->off_owner_sid >= buf_len)
80	\|\| (ret_val->off_grp_sid >= buf_len)
81	\|\| (ret_val->off_sacl >= buf_len)
82	\|\| (ret_val->off_dacl >= buf_len))
83	{
84	talloc_free(ret_val);
85	return NULL;
86	}
87
88	if(ret_val->off_owner_sid != 0)
89	{
90	ret_val->owner_sid = winsec_parse_dom_sid(ret_val,
91	buf + ret_val->off_owner_sid,
92	buf_len - ret_val->off_owner_sid);
93	if(ret_val->owner_sid == NULL)
94	{
95	talloc_free(ret_val);
96	return NULL;
97	}
98	}
99
100	if (ret_val->off_grp_sid != 0)
101	{
102	ret_val->grp_sid = winsec_parse_dom_sid(ret_val, buf + ret_val->off_grp_sid,
103	buf_len - ret_val->off_grp_sid);
104	if(ret_val->grp_sid == NULL)
105	{
106	talloc_free(ret_val);
107	return NULL;
108	}
109	}
110
111	if ((ret_val->control & WINSEC_DESC_SACL_PRESENT) && ret_val->off_sacl)
112	{
113	ret_val->sacl = winsec_parse_acl(ret_val, buf + ret_val->off_sacl,
114	buf_len - ret_val->off_sacl);
115	if(ret_val->sacl == NULL)
116	{
117	talloc_free(ret_val);
118	return NULL;
119	}
120	}
121
122	if ((ret_val->control & WINSEC_DESC_DACL_PRESENT) && ret_val->off_dacl != 0)
123	{
124	ret_val->dacl = winsec_parse_acl(ret_val, buf + ret_val->off_dacl,
125	buf_len - ret_val->off_dacl);
126	if(ret_val->dacl == NULL)
127	{
128	talloc_free(ret_val);
129	return NULL;
130	}
131	}
132
133	return ret_val;
134	}
135
136
137	/******************************************************************************
138	* Parses a WINSEC_ACL structure and all substructures.
139	******************************************************************************/
140	WINSEC_ACL* winsec_parse_acl(void* talloc_ctx,
141	const uint8_t* buf, uint32_t buf_len)
142	{
143	uint32_t i, offset;
144	WINSEC_ACL* ret_val;
145
146	/*
147	* Note that the size is always a multiple of 4 bytes due to the
148	* nature of the data structure.
149	*/
150	if (buf == NULL \|\| buf_len < 8)
151	return NULL;
152	/*
153	if((ret_val = (WINSEC_ACL*)zalloc(sizeof(WINSEC_ACL))) == NULL)
154	return NULL;
155	*/
156	if((ret_val = talloc(talloc_ctx, WINSEC_ACL)) == NULL)
157	return NULL;
158
159	ret_val->revision = SVAL(buf, 0x0);
160	ret_val->size = SVAL(buf, 0x2);
161	ret_val->num_aces = IVAL(buf, 0x4);
162
163	/* The num_aces can be at most around 4k because anything greater
164	* wouldn't fit in the 16 bit size even if every ace was as small as
165	* possible.
166	*/
167	if((ret_val->size > buf_len) \|\| (ret_val->num_aces > 4095))
168	{
169	talloc_free(ret_val);
170	return NULL;
171	}
172
173	/* Even if the num_aces is zero, allocate memory as there's a difference
174	* between a non-present DACL (allow all access) and a DACL with no ACE's
175	* (allow no access).
176	*/
177	/* if((ret_val->aces = (WINSEC_ACE*)zcalloc(sizeof(WINSEC_ACE),
178	ret_val->num_aces+1)) == NULL)
179	*/
180	if((ret_val->aces = talloc_array(ret_val, WINSEC_ACE*,
181	ret_val->num_aces+1)) == NULL)
182	{
183	talloc_free(ret_val);
184	return NULL;
185	}
186
187	offset = 8;
188	for(i=0; i < ret_val->num_aces; i++)
189	{
190	ret_val->aces[i] = winsec_parse_ace(ret_val->aces,
191	buf+offset, buf_len-offset);
192	if(ret_val->aces[i] == NULL)
193	{
194	talloc_free(ret_val);
195	return NULL;
196	}
197
198	offset += ret_val->aces[i]->size;
199	if(offset > buf_len)
200	{
201	talloc_free(ret_val);
202	return NULL;
203	}
204	}
205
206	return ret_val;
207	}
208
209
210	/******************************************************************************
211	* Parses a WINSEC_ACE structure and all substructures.
212	******************************************************************************/
213	WINSEC_ACE* winsec_parse_ace(void* talloc_ctx,
214	const uint8_t* buf, uint32_t buf_len)
215	{
216	uint32_t offset;
217	WINSEC_ACE* ret_val;
218
219	if(buf == NULL \|\| buf_len < WINSEC_ACE_MIN_SIZE)
220	return NULL;
221
222	/* if((ret_val = (WINSEC_ACE)zalloc(sizeof(WINSEC_ACE))) == NULL)/
223
224	if((ret_val = talloc(talloc_ctx, WINSEC_ACE)) == NULL)
225	return NULL;
226
227	ret_val->type = buf[0];
228	ret_val->flags = buf[1];
229	ret_val->size = SVAL(buf, 0x2);
230	ret_val->access_mask = IVAL(buf, 0x4);
231
232	offset = 0x8;
233
234	/* check whether object access is present */
235	if (winsec_ace_object(ret_val->type))
236	{
237	ret_val->obj_flags = IVAL(buf, offset);
238	offset += 4;
239
240	if(ret_val->obj_flags & WINSEC_ACE_OBJECT_PRESENT)
241	{
242	ret_val->obj_guid = winsec_parse_uuid(ret_val,
243	buf+offset, buf_len-offset);
244	if(ret_val->obj_guid == NULL)
245	{
246	talloc_free(ret_val);
247	return NULL;
248	}
249	offset += sizeof(WINSEC_UUID);
250	}
251
252	if(ret_val->obj_flags & WINSEC_ACE_OBJECT_INHERITED_PRESENT)
253	{
254	ret_val->inh_guid = winsec_parse_uuid(ret_val,
255	buf+offset, buf_len-offset);
256	if(ret_val->inh_guid == NULL)
257	{
258	talloc_free(ret_val);
259	return NULL;
260	}
261	offset += sizeof(WINSEC_UUID);
262	}
263	}
264
265	ret_val->trustee = winsec_parse_dom_sid(ret_val, buf+offset, buf_len-offset);
266	if(ret_val->trustee == NULL)
267	{
268	talloc_free(ret_val);
269	return NULL;
270	}
271
272	return ret_val;
273	}
274
275
276	/******************************************************************************
277	* Parses a WINSEC_DOM_SID structure.
278	******************************************************************************/
279	WINSEC_DOM_SID* winsec_parse_dom_sid(void* talloc_ctx,
280	const uint8_t* buf, uint32_t buf_len)
281	{
282	uint32_t i;
283	WINSEC_DOM_SID* ret_val;
284
285	if(buf == NULL \|\| buf_len < 8)
286	return NULL;
287
288	/* if((ret_val = (WINSEC_DOM_SID)zalloc(sizeof(WINSEC_DOM_SID))) == NULL)/
289	if((ret_val = talloc(talloc_ctx, WINSEC_DOM_SID)) == NULL)
290	return NULL;
291
292	ret_val->sid_rev_num = buf[0];
293	ret_val->num_auths = buf[1];
294	memcpy(ret_val->id_auth, buf+2, 6);
295
296	/* XXX: should really issue a warning here... */
297	if (ret_val->num_auths > WINSEC_MAX_SUBAUTHS)
298	ret_val->num_auths = WINSEC_MAX_SUBAUTHS;
299
300	if(buf_len < ret_val->num_auths*sizeof(uint32_t)+8)
301	{
302	talloc_free(ret_val);
303	return NULL;
304	}
305
306	for(i=0; i < ret_val->num_auths; i++)
307	ret_val->sub_auths[i] = IVAL(buf, 8+i*sizeof(uint32_t));
308
309	return ret_val;
310	}
311
312
313	/******************************************************************************
314	* Parses a WINSEC_UUID struct.
315	******************************************************************************/
316	WINSEC_UUID* winsec_parse_uuid(void* talloc_ctx,
317	const uint8_t* buf, uint32_t buf_len)
318	{
319	WINSEC_UUID* ret_val;
320
321	if(buf == NULL \|\| buf_len < sizeof(WINSEC_UUID))
322	return false;
323
324	/* if((ret_val = (WINSEC_UUID)zalloc(sizeof(WINSEC_UUID))) == NULL)/
325	if((ret_val = talloc(talloc_ctx, WINSEC_UUID)) == NULL)
326	return NULL;
327
328	ret_val->time_low = IVAL(buf, 0x0);
329	ret_val->time_mid = SVAL(buf, 0x4);
330	ret_val->time_hi_and_version = SVAL(buf, 0x6);
331
332	memcpy(ret_val->clock_seq, buf+0x8, 2);
333	memcpy(ret_val->node, buf+0xB, 6);
334
335	return ret_val;
336	}
337
338
339	/******************************************************************************
340	* Calculates the size of a SID.
341	******************************************************************************/
342	size_t winsec_sid_size(const WINSEC_DOM_SID* sid)
343	{
344	if (sid == NULL)
345	return 0;
346
347	return sid->num_auths * sizeof(uint32_t) + 8;
348	}
349
350
351	/******************************************************************************
352	* Compare the auth portion of two SIDs.
353	******************************************************************************/
354	int winsec_sid_compare_auth(const WINSEC_DOM_SID* sid1, const WINSEC_DOM_SID* sid2)
355	{
356	int i;
357
358	if (sid1 == sid2)
359	return 0;
360	if (!sid1)
361	return -1;
362	if (!sid2)
363	return 1;
364
365	if (sid1->sid_rev_num != sid2->sid_rev_num)
366	return sid1->sid_rev_num - sid2->sid_rev_num;
367
368	for (i = 0; i < 6; i++)
369	if (sid1->id_auth[i] != sid2->id_auth[i])
370	return sid1->id_auth[i] - sid2->id_auth[i];
371
372	return 0;
373	}
374
375
376	/******************************************************************************
377	* Compare two SIDs.
378	******************************************************************************/
379	int winsec_sid_compare(const WINSEC_DOM_SID* sid1, const WINSEC_DOM_SID* sid2)
380	{
381	int i;
382
383	if (sid1 == sid2)
384	return 0;
385	if (!sid1)
386	return -1;
387	if (!sid2)
388	return 1;
389
390	/* Compare most likely different rids, first: i.e start at end */
391	if (sid1->num_auths != sid2->num_auths)
392	return sid1->num_auths - sid2->num_auths;
393
394	for (i = sid1->num_auths-1; i >= 0; --i)
395	if (sid1->sub_auths[i] != sid2->sub_auths[i])
396	return sid1->sub_auths[i] - sid2->sub_auths[i];
397
398	return winsec_sid_compare_auth(sid1, sid2);
399	}
400
401
402	/******************************************************************************
403	* Compare two SIDs.
404	******************************************************************************/
405	bool winsec_sid_equal(const WINSEC_DOM_SID* sid1, const WINSEC_DOM_SID* sid2)
406	{
407	return winsec_sid_compare(sid1, sid2) == 0;
408	}
409
410
411	/******************************************************************************
412	* Compares two WINSEC_DESC structures.
413	******************************************************************************/
414	bool winsec_desc_equal(WINSEC_DESC* s1, WINSEC_DESC* s2)
415	{
416	/* Trivial cases */
417	if (!s1 && !s2)
418	return true;
419	if (!s1 \|\| !s2)
420	return false;
421
422	/* Check top level stuff */
423	if (s1->revision != s2->revision)
424	return false;
425
426	if (s1->control != s2->control)
427	return false;
428
429	/* Check owner and group */
430	if (!winsec_sid_equal(s1->owner_sid, s2->owner_sid))
431	return false;
432
433	if (!winsec_sid_equal(s1->grp_sid, s2->grp_sid))
434	return false;
435
436	/* Check ACLs present in one but not the other */
437	if ((s1->dacl && !s2->dacl) \|\| (!s1->dacl && s2->dacl) \|\|
438	(s1->sacl && !s2->sacl) \|\| (!s1->sacl && s2->sacl))
439	{ return false; }
440
441	/* Sigh - we have to do it the hard way by iterating over all
442	the ACEs in the ACLs */
443	if(!winsec_acl_equal(s1->dacl, s2->dacl) \|\| !winsec_acl_equal(s1->sacl, s2->sacl))
444	return false;
445
446	return true;
447	}
448
449
450
451	/******************************************************************************
452	* Compares two WINSEC_ACL structures.
453	******************************************************************************/
454	bool winsec_acl_equal(WINSEC_ACL* s1, WINSEC_ACL* s2)
455	{
456	unsigned int i, j;
457
458	/* Trivial cases */
459	if (!s1 && !s2)
460	return true;
461	if (!s1 \|\| !s2)
462	return false;
463
464	/* Check top level stuff */
465	if (s1->revision != s2->revision)
466	return false;
467
468	if (s1->num_aces != s2->num_aces)
469	return false;
470
471	/* The ACEs could be in any order so check each ACE in s1 against
472	each ACE in s2. */
473
474	for (i = 0; i < s1->num_aces; i++)
475	{
476	bool found = false;
477
478	for (j = 0; j < s2->num_aces; j++)
479	{
480	if (winsec_ace_equal(s1->aces[i], s2->aces[j]))
481	{
482	found = true;
483	break;
484	}
485	}
486
487	if (!found)
488	return false;
489	}
490
491	return true;
492	}
493
494
495	/******************************************************************************
496	* Compares two WINSEC_ACE structures.
497	******************************************************************************/
498	bool winsec_ace_equal(WINSEC_ACE* s1, WINSEC_ACE* s2)
499	{
500	/* Trivial cases */
501	if (!s1 && !s2)
502	return true;
503	if (!s1 \|\| !s2)
504	return false;
505
506	/* Check top level stuff */
507	if (s1->type != s2->type \|\| s1->flags != s2->flags \|\|
508	s1->access_mask != s2->access_mask)
509	{ return false; }
510
511	/* Check SID */
512	if (!winsec_sid_equal(s1->trustee, s2->trustee))
513	return false;
514
515	return true;
516	}
517
518
519	/******************************************************************************
520	* Check if ACE has OBJECT type.
521	******************************************************************************/
522	bool winsec_ace_object(uint8_t type)
523	{
524	if (type == WINSEC_ACE_TYPE_ACCESS_ALLOWED_OBJECT \|\|
525	type == WINSEC_ACE_TYPE_ACCESS_DENIED_OBJECT \|\|
526	type == WINSEC_ACE_TYPE_SYSTEM_AUDIT_OBJECT \|\|
527	type == WINSEC_ACE_TYPE_SYSTEM_ALARM_OBJECT)
528	{ return true; }
529
530	return false;
531	}

Note: See TracBrowser for help on using the repository browser.

Context Navigation

source: trunk/lib/winsec.c @ 147

Download in other formats: