2020-09-30 16:53:55 +02:00

524 lines
20 KiB
C++

//+---------------------------------------------------------------------------
//
// Microsoft Windows
// Copyright (C) Microsoft Corporation, 2002.
//
// File: conversion.cxx
//
// Contents: data conversion functions
//
// History: 11-Nov-02 Created
//
//----------------------------------------------------------------------------
#include "..\pch\headers.hxx"
#include "common.hxx"
#include "security.hxx"
#include "statsync.hxx"
extern CStaticCritSec gcsSSCritSection;
#define SCH_DATA_VERSION L"DataVersion"
//+---------------------------------------------------------------------------
//
// Function: CheckDataVersion
//
// Synopsis: Check for registry key that will indicate
// the version of the scheduler data.
//
// Arguments: None
//
// Returns: DWORD - indicates data version
//
//----------------------------------------------------------------------------
DWORD CheckDataVersion(void)
{
DWORD dwDataVersion = 0;
HKEY hSchedKey = NULL;
long lErr = RegOpenKeyEx(HKEY_LOCAL_MACHINE,
SCH_AGENT_KEY,
0,
KEY_QUERY_VALUE | KEY_SET_VALUE,
&hSchedKey);
if (lErr == ERROR_SUCCESS)
{
DWORD dwType;
DWORD cb = sizeof(dwDataVersion);
lErr = RegQueryValueEx(hSchedKey,
SCH_DATA_VERSION,
NULL,
&dwType,
(LPBYTE) &dwDataVersion,
&cb);
if (lErr != ERROR_SUCCESS || dwType != REG_DWORD)
{
dwDataVersion = 0;
}
}
if (hSchedKey != NULL)
{
RegCloseKey(hSchedKey);
}
return dwDataVersion;
}
//+---------------------------------------------------------------------------
//
// Function: RecordDataVersion
//
// Synopsis: Update registry key to record current data version
//
// Arguments: dwDataVersion -- version value to store
//
// Returns: HRESULT
//
//----------------------------------------------------------------------------
HRESULT RecordDataVersion(DWORD dwDataVersion)
{
HRESULT hr = S_OK;
HKEY hSchedKey = NULL;
long lErr = RegOpenKeyEx(HKEY_LOCAL_MACHINE,
SCH_AGENT_KEY,
0,
KEY_QUERY_VALUE | KEY_SET_VALUE,
&hSchedKey);
if (lErr == ERROR_SUCCESS)
{
DWORD cb = sizeof(dwDataVersion);
RegSetValueEx(hSchedKey,
SCH_DATA_VERSION,
NULL,
REG_DWORD,
(CONST BYTE *)&dwDataVersion,
cb);
if (lErr != ERROR_SUCCESS)
{
schDebugOut((DEB_ERROR, "RegSetValueEx of RecordDataVersion value failed %ld\n", lErr));
hr = E_FAIL;
}
}
if (hSchedKey != NULL)
{
RegCloseKey(hSchedKey);
}
return hr;
}
//+---------------------------------------------------------------------------
//
// Function: ConvertJobIdentityHashMethod
//
// Synopsis: Create new identity entries for each job file in the SAI
// utilizing the new hash method.
//
// Arguments: None
//
// Returns: HRESULT
//
//----------------------------------------------------------------------------
HRESULT ConvertJobIdentityHashMethod(void)
{
HCRYPTPROV hCSP = NULL;
WCHAR* pwszTasksFolder = NULL;
HANDLE hFileEnum = INVALID_HANDLE_VALUE;
DWORD cbSAI = 0;
DWORD cbSAC = 0;
BYTE* pbSAI = NULL;
BYTE* pbSAC = NULL;
BYTE* pbIdentitySet = NULL;
//
// Obtain a provider handle to the CSP (for use with Crypto API).
//
HRESULT hr = GetCSPHandle(&hCSP);
if (FAILED(hr))
{
return(hr);
}
//
// Guard SA security database access.
//
EnterCriticalSection(&gcsSSCritSection);
//
// Read the security database so we can do the lookups
//
hr = ReadSecurityDBase(&cbSAI, &pbSAI, &cbSAC, &pbSAC);
if (SUCCEEDED(hr))
{
if (cbSAI <= SAI_HEADER_SIZE)
{
//
// Database empty, nothing to do.
//
}
else
{
//
// Enumerate job objects in the task's folder directory.
//
hr = GetTasksFolder(&pwszTasksFolder);
if (SUCCEEDED(hr))
{
WCHAR wszSearchPath[MAX_PATH + 1];
hr = StringCchCopy(wszSearchPath, MAX_PATH + 1, pwszTasksFolder);
if (SUCCEEDED(hr))
{
hr = StringCchCat(wszSearchPath, MAX_PATH + 1, EXTENSION_WILDCARD TSZ_JOB);
if (SUCCEEDED(hr))
{
WIN32_FIND_DATA fd;
ZeroMemory(&fd, sizeof(fd));
DWORD dwRet = 0;
if ((hFileEnum = FindFirstFile(wszSearchPath, &fd)) == INVALID_HANDLE_VALUE)
{
//
// Either no jobs (this is OK), or an error occurred.
//
dwRet = GetLastError();
if (dwRet != ERROR_FILE_NOT_FOUND)
{
hr = _HRESULT_FROM_WIN32(dwRet);
}
}
else
{
//
// Must concatenate the filename returned from the enumeration onto the folder path
// before computing the hash. Prepare for doing that repeatedly by taking the path,
// adding a slash, and remembering the next character position.
//
hr = StringCchCopy(wszSearchPath, MAX_PATH + 1, pwszTasksFolder);
if (SUCCEEDED(hr))
{
DWORD iConcatenation = lstrlenW(pwszTasksFolder);
wszSearchPath[iConcatenation++] = L'\\';
//
// Process each found file
//
BYTE rgbIdentity[HASH_DATA_SIZE];
DWORD dwCredentialIndex = 0;
BOOL bIsPasswordNull = FALSE;
BYTE* pbFoundIdentity = NULL;
DWORD cbFileName = 0;
while (dwRet != ERROR_NO_MORE_FILES)
{
//
// Truncate the existing name after the folder path,
// then concatenate the new filename onto it.
//
wszSearchPath[iConcatenation] = L'\0';
if (SUCCEEDED(StringCchCat(wszSearchPath, MAX_PATH + 1, fd.cFileName)))
{
//
// Hash the job into a unique identity using the old method
//
if (SUCCEEDED(HashJobIdentity(hCSP, wszSearchPath, rgbIdentity, 0)))
{
//
// Find the identity in the SAI for this job
//
hr = SAIFindIdentity(rgbIdentity,
cbSAI,
pbSAI,
&dwCredentialIndex,
&bIsPasswordNull,
&pbFoundIdentity,
NULL,
NULL);
//
// S_OK means the identity was found; S_FALSE means it wasn't
// Other codes are errors. We process only the S_OKs, of course.
//
if (S_OK == hr)
{
//
// Hash the job into a unique identity using the new method
//
if (SUCCEEDED(HashJobIdentity(hCSP, wszSearchPath, rgbIdentity)))
{
//
// Store a NULL password by flipping the last bit of the hash data.
//
if (bIsPasswordNull)
{
LAST_HASH_BYTE(rgbIdentity) ^= 1;
}
//
// Update the old identity in place with the new one
//
hr = SAIUpdateIdentity(rgbIdentity,
pbFoundIdentity,
cbSAI,
pbSAI);
if (FAILED(hr))
{
break;
}
}
else
{
//
// we failed to produce a new hash for this file;
// while unexpected, it shouldn't be fatal to the conversion process;
// we just won't be able to convert this job; go on to the next job
//
}
}
else
{
//
// we failed to find the original job identity;
// perhaps its credentials have already been lost;
// there's nothing we can do; go on to the next job
//
hr = S_OK;
}
}
}
if (!FindNextFile(hFileEnum, &fd))
{
dwRet = GetLastError();
if (dwRet != ERROR_NO_MORE_FILES)
{
hr = _HRESULT_FROM_WIN32(dwRet);
}
break;
}
}
if (SUCCEEDED(hr))
{
//
// Update security database with the new identities
//
hr = WriteSecurityDBase(cbSAI, pbSAI, cbSAC, pbSAC);
}
}
}
}
}
}
}
}
if (hFileEnum != INVALID_HANDLE_VALUE)
{
FindClose(hFileEnum);
}
if (pwszTasksFolder)
{
delete [] pwszTasksFolder;
}
if (pbSAI)
{
LocalFree(pbSAI);
}
if (pbSAC)
{
LocalFree(pbSAC);
}
if (hCSP)
{
CloseCSPHandle(hCSP);
}
LeaveCriticalSection(&gcsSSCritSection);
return hr;
}
//+---------------------------------------------------------------------------
//
// Function: ConvertNetScheduleJobSignatures
//
// Synopsis: Netschedule jobs (AT jobs) are signed internally with a hash so
// that the service can validate their authenticity at run time.
// Since we are changing how the hash is created, in order to be
// runnable again, the AT jobs must be signed again with the new hash.
// Prior to re-signing, we will verify the jobs using the old hash.
//
// Arguments: None
//
// Returns: HRESULT
//
//----------------------------------------------------------------------------
HRESULT ConvertNetScheduleJobSignatures(void)
{
HRESULT hr = S_OK;
HANDLE hFileEnum = INVALID_HANDLE_VALUE;
WCHAR wszSearchPath[MAX_PATH + 1];
hr = StringCchCopy(wszSearchPath, MAX_PATH + 1, g_TasksFolderInfo.ptszPath);
if (SUCCEEDED(hr))
{
hr = StringCchCat(wszSearchPath, MAX_PATH + 1, L"\\" TSZ_AT_JOB_PREFIX L"*" TSZ_DOTJOB);
if (SUCCEEDED(hr))
{
WIN32_FIND_DATA fd;
ZeroMemory(&fd, sizeof(fd));
DWORD dwRet = 0;
if ((hFileEnum = FindFirstFile(wszSearchPath, &fd)) == INVALID_HANDLE_VALUE)
{
//
// Either no jobs (this is OK), or an error occurred.
//
dwRet = GetLastError();
if (dwRet != ERROR_FILE_NOT_FOUND)
{
hr = _HRESULT_FROM_WIN32(dwRet);
}
}
else
{
//
// Must concatenate the filename returned from the enumeration onto the folder path
// before loading the job. Prepare for doing that repeatedly by taking the path,
// adding a slash, and remembering the next character position.
//
hr = StringCchCopy(wszSearchPath, MAX_PATH + 1, g_TasksFolderInfo.ptszPath);
if (SUCCEEDED(hr))
{
DWORD iConcatenation = lstrlenW(g_TasksFolderInfo.ptszPath);
wszSearchPath[iConcatenation++] = L'\\';
//
// Process each found file
//
while (dwRet != ERROR_NO_MORE_FILES)
{
//
// Truncate the existing name after the folder path,
// then concatenate the new filename onto it.
//
wszSearchPath[iConcatenation] = L'\0';
if (SUCCEEDED(StringCchCat(wszSearchPath, MAX_PATH + 1, fd.cFileName)))
{
//
// Load, verify, sign, save, and release the job
//
CJob* pJob = CJob::Create();
if (!pJob)
{
hr = E_OUTOFMEMORY;
break;
}
if (SUCCEEDED(pJob->Load(wszSearchPath, 0)))
{
//
// verify using the old hash
//
if (pJob->VerifySignature(0))
{
//
// sign using the new hash
//
if (SUCCEEDED(pJob->Sign()))
{
pJob->SaveWithRetry(pJob->GetFileName(),
FALSE,
SAVEP_VARIABLE_LENGTH_DATA |
SAVEP_PRESERVE_NET_SCHEDULE);
}
}
}
pJob->Release();
}
if (!FindNextFile(hFileEnum, &fd))
{
dwRet = GetLastError();
if (dwRet != ERROR_NO_MORE_FILES)
{
hr = _HRESULT_FROM_WIN32(dwRet);
}
break;
}
}
}
}
if (hFileEnum != INVALID_HANDLE_VALUE)
{
FindClose(hFileEnum);
}
}
}
return hr;
}
//+---------------------------------------------------------------------------
//
// Function: PerformDataConversions
//
// Synopsis: Perform any data conversions that may be required as a result
// of changes to task scheduler. This function is intended to
// allow potential future conversions to be added easily, and to
// allow conversions of data that may have already had earlier
// conversions applied.
//
// Arguments: None
//
// Returns: HRESULT
//
//----------------------------------------------------------------------------
HRESULT PerformDataConversions(void)
{
HRESULT hr = S_OK;
switch (CheckDataVersion())
{
case 0:
hr = ConvertJobIdentityHashMethod();
if (SUCCEEDED(hr))
{
hr = RecordDataVersion(1);
}
// fall through to handle next higher conversion
case 1:
if (SUCCEEDED(hr))
{
hr = ConvertNetScheduleJobSignatures();
if (SUCCEEDED(hr))
{
hr = RecordDataVersion(2);
}
}
// fall through to handle next higher conversion
case 2:
// nothing to do for now
// version 2 is currently the highest and already has all changes applied
break;
default:
// if the value is not listed above, then someone has altered the registry;
// the version value is meaningless to us, so it is safest to not do anything,
// but reflect the unusual situation in the error code in case we want to log it
hr = S_FALSE;
break;
}
return hr;
}