wintun/api/entry.c

/* SPDX-License-Identifier: GPL-2.0
 *
 * Copyright (C) 2018-2021 WireGuard LLC. All Rights Reserved.
 */

#include "adapter.h"
#include "entry.h"
#include "logger.h"
#include "registry.h"
#include "namespace.h"
#include "wintun.h"

#include <Windows.h>
#pragma warning(push)
#pragma warning(disable : 4201)
/* nonstandard extension used: nameless struct/union */
#include <delayimp.h>
#pragma warning(pop)
#include <sddl.h>
#include <winefs.h>
#include <stdlib.h>

HINSTANCE ResourceModule;
HANDLE ModuleHeap;
SECURITY_ATTRIBUTES SecurityAttributes = { .nLength = sizeof(SECURITY_ATTRIBUTES) };
BOOL IsLocalSystem;

static FARPROC WINAPI
DelayedLoadLibraryHook(unsigned dliNotify, PDelayLoadInfo pdli)
{
    if (dliNotify != dliNotePreLoadLibrary)
        return NULL;
    HMODULE Library = LoadLibraryExA(pdli->szDll, NULL, LOAD_LIBRARY_SEARCH_SYSTEM32);
    if (!Library)
        abort();
    return (FARPROC)Library;
}

const PfnDliHook __pfnDliNotifyHook2 = DelayedLoadLibraryHook;

static BOOL
InitializeSecurityObjects(void)
{
    BYTE LocalSystemSid[MAX_SID_SIZE];
    DWORD RequiredBytes = sizeof(LocalSystemSid);
    HANDLE CurrentProcessToken;
    struct
    {
        TOKEN_USER MaybeLocalSystem;
        CHAR LargeEnoughForLocalSystem[MAX_SID_SIZE];
    } TokenUserBuffer;
    BOOL Ret = FALSE;

    if (!CreateWellKnownSid(WinLocalSystemSid, NULL, LocalSystemSid, &RequiredBytes))
        return FALSE;

    if (!OpenProcessToken(GetCurrentProcess(), TOKEN_QUERY, &CurrentProcessToken))
        return FALSE;

    if (!GetTokenInformation(CurrentProcessToken, TokenUser, &TokenUserBuffer, sizeof(TokenUserBuffer), &RequiredBytes))
        goto cleanupProcessToken;

    IsLocalSystem = EqualSid(TokenUserBuffer.MaybeLocalSystem.User.Sid, LocalSystemSid);
    Ret = ConvertStringSecurityDescriptorToSecurityDescriptorW(
        IsLocalSystem ? L"O:SYD:P(A;;GA;;;SY)(A;;GA;;;BA)S:(ML;;NWNRNX;;;HI)"
                      : L"O:BAD:P(A;;GA;;;SY)(A;;GA;;;BA)S:(ML;;NWNRNX;;;HI)",
        SDDL_REVISION_1,
        &SecurityAttributes.lpSecurityDescriptor,
        NULL);

cleanupProcessToken:
    CloseHandle(CurrentProcessToken);
    return Ret;
}

BOOL APIENTRY
DllMain(_In_ HINSTANCE hinstDLL, _In_ DWORD fdwReason, _In_ LPVOID lpvReserved)
{
    UNREFERENCED_PARAMETER(lpvReserved);

    switch (fdwReason)
    {
    case DLL_PROCESS_ATTACH:
        ResourceModule = hinstDLL;
        ModuleHeap = HeapCreate(0, 0, 0);
        if (!ModuleHeap)
            return FALSE;
        if (!InitializeSecurityObjects())
        {
            HeapDestroy(ModuleHeap);
            return FALSE;
        }
        AdapterInit();
        NamespaceInit();
        break;

    case DLL_PROCESS_DETACH:
        NamespaceDone();
        LocalFree(SecurityAttributes.lpSecurityDescriptor);
        HeapDestroy(ModuleHeap);
        break;
    }
    return TRUE;
}
api: add skeleton for wintun.dll Signed-off-by: Simon Rozman <simon@rozman.si> 2020-07-03 12:26:06 +02:00			`/* SPDX-License-Identifier: GPL-2.0`
			`*`
global: bump copyright Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com> 2021-01-30 16:45:26 +01:00			`* Copyright (C) 2018-2021 WireGuard LLC. All Rights Reserved.`
api: add skeleton for wintun.dll Signed-off-by: Simon Rozman <simon@rozman.si> 2020-07-03 12:26:06 +02:00			`*/`

api: get rid of pch and make headers sane Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com> 2020-10-31 11:55:26 +01:00			`#include "adapter.h"`
			`#include "entry.h"`
			`#include "logger.h"`
			`#include "registry.h"`
			`#include "namespace.h"`
			`#include "wintun.h"`

			`#include <Windows.h>`
			`#pragma warning(push)`
			`#pragma warning(disable : 4201)`
			`/* nonstandard extension used: nameless struct/union */`
			`#include <delayimp.h>`
			`#pragma warning(pop)`
			`#include <sddl.h>`
api: build with WDK Makes builds more reproducable, as we can do our next release using the EWDK, an all-in-one ISO of build tools from Microsoft. Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com> 2021-07-23 18:19:00 +02:00			`#include <winefs.h>`
			`#include <stdlib.h>`
api: add skeleton for wintun.dll Signed-off-by: Simon Rozman <simon@rozman.si> 2020-07-03 12:26:06 +02:00
			`HINSTANCE ResourceModule;`
api: switch to private heap We must not use the process heap, as it is changeable. Client may change it causing our HeapFree() to use wrong heap. Signed-off-by: Simon Rozman <simon@rozman.si> 2020-10-24 22:12:47 +02:00			`HANDLE ModuleHeap;`
api: remove security attributes debug trap door Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com> 2020-10-30 13:26:36 +01:00			`SECURITY_ATTRIBUTES SecurityAttributes = { .nLength = sizeof(SECURITY_ATTRIBUTES) };`
api: don't auto-elevate There's no longer a need to do this for every API call. This only exists now for the pnp guid reuse workaround hack. Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com> 2021-06-24 12:12:13 +02:00			`BOOL IsLocalSystem;`
api: add skeleton for wintun.dll Signed-off-by: Simon Rozman <simon@rozman.si> 2020-07-03 12:26:06 +02:00
api: use GetLastError() to report failures like standard Win32 Signed-off-by: Simon Rozman <simon@rozman.si> 2020-11-03 12:29:34 +01:00			`static FARPROC WINAPI`
			`DelayedLoadLibraryHook(unsigned dliNotify, PDelayLoadInfo pdli)`
api: fix dll hijacking vulns Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com> 2020-10-30 11:43:47 +01:00			`{`
			`if (dliNotify != dliNotePreLoadLibrary)`
			`return NULL;`
			`HMODULE Library = LoadLibraryExA(pdli->szDll, NULL, LOAD_LIBRARY_SEARCH_SYSTEM32);`
			`if (!Library)`
			`abort();`
			`return (FARPROC)Library;`
			`}`

			`const PfnDliHook __pfnDliNotifyHook2 = DelayedLoadLibraryHook;`
api: remove useless line Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com> 2020-11-16 20:53:07 +01:00
api: don't auto-elevate There's no longer a need to do this for every API call. This only exists now for the pnp guid reuse workaround hack. Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com> 2021-06-24 12:12:13 +02:00			`static BOOL`
			`InitializeSecurityObjects(void)`
			`{`
			`BYTE LocalSystemSid[MAX_SID_SIZE];`
			`DWORD RequiredBytes = sizeof(LocalSystemSid);`
			`HANDLE CurrentProcessToken;`
			`struct`
			`{`
			`TOKEN_USER MaybeLocalSystem;`
			`CHAR LargeEnoughForLocalSystem[MAX_SID_SIZE];`
			`} TokenUserBuffer;`
			`BOOL Ret = FALSE;`

			`if (!CreateWellKnownSid(WinLocalSystemSid, NULL, LocalSystemSid, &RequiredBytes))`
			`return FALSE;`

			`if (!OpenProcessToken(GetCurrentProcess(), TOKEN_QUERY, &CurrentProcessToken))`
			`return FALSE;`

			`if (!GetTokenInformation(CurrentProcessToken, TokenUser, &TokenUserBuffer, sizeof(TokenUserBuffer), &RequiredBytes))`
			`goto cleanupProcessToken;`

			`IsLocalSystem = EqualSid(TokenUserBuffer.MaybeLocalSystem.User.Sid, LocalSystemSid);`
			`Ret = ConvertStringSecurityDescriptorToSecurityDescriptorW(`
			`IsLocalSystem ? L"O:SYD:P(A;;GA;;;SY)(A;;GA;;;BA)S:(ML;;NWNRNX;;;HI)"`
			`: L"O:BAD:P(A;;GA;;;SY)(A;;GA;;;BA)S:(ML;;NWNRNX;;;HI)",`
			`SDDL_REVISION_1,`
			`&SecurityAttributes.lpSecurityDescriptor,`
			`NULL);`

			`cleanupProcessToken:`
			`CloseHandle(CurrentProcessToken);`
			`return Ret;`
			`}`

api: add skeleton for wintun.dll Signed-off-by: Simon Rozman <simon@rozman.si> 2020-07-03 12:26:06 +02:00			`BOOL APIENTRY`
			`DllMain(_In_ HINSTANCE hinstDLL, _In_ DWORD fdwReason, _In_ LPVOID lpvReserved)`
			`{`
			`UNREFERENCED_PARAMETER(lpvReserved);`

			`switch (fdwReason)`
			`{`
			`case DLL_PROCESS_ATTACH:`
			`ResourceModule = hinstDLL;`
api: switch to private heap We must not use the process heap, as it is changeable. Client may change it causing our HeapFree() to use wrong heap. Signed-off-by: Simon Rozman <simon@rozman.si> 2020-10-24 22:12:47 +02:00			`ModuleHeap = HeapCreate(0, 0, 0);`
api: refuse to load DLL on init failure Signed-off-by: Simon Rozman <simon@rozman.si> 2020-10-31 08:15:52 +01:00			`if (!ModuleHeap)`
			`return FALSE;`
api: don't auto-elevate There's no longer a need to do this for every API call. This only exists now for the pnp guid reuse workaround hack. Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com> 2021-06-24 12:12:13 +02:00			`if (!InitializeSecurityObjects())`
			`{`
			`HeapDestroy(ModuleHeap);`
			`return FALSE;`
			`}`
api: internal reorganization Gather adapter management in adapter.h/.c (formerly devmgmt.h/.c) and unify HwID tests. Use "Namespace" namespace in all functions from namespace.h/.c. Fix char strings in LOG_... Signed-off-by: Simon Rozman <simon@rozman.si> 2020-10-15 11:32:06 +02:00			`AdapterInit();`
api: port tun\wintun\namespace_windows.go from wireguard-go Signed-off-by: Simon Rozman <simon@rozman.si> 2020-07-03 16:49:47 +02:00			`NamespaceInit();`
			`break;`

api: add skeleton for wintun.dll Signed-off-by: Simon Rozman <simon@rozman.si> 2020-07-03 12:26:06 +02:00			`case DLL_PROCESS_DETACH:`
api: use GetLastError() to report failures like standard Win32 Signed-off-by: Simon Rozman <simon@rozman.si> 2020-11-03 12:29:34 +01:00			`NamespaceDone();`
api: remove security attributes debug trap door Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com> 2020-10-30 13:26:36 +01:00			`LocalFree(SecurityAttributes.lpSecurityDescriptor);`
api: switch to private heap We must not use the process heap, as it is changeable. Client may change it causing our HeapFree() to use wrong heap. Signed-off-by: Simon Rozman <simon@rozman.si> 2020-10-24 22:12:47 +02:00			`HeapDestroy(ModuleHeap);`
api: add skeleton for wintun.dll Signed-off-by: Simon Rozman <simon@rozman.si> 2020-07-03 12:26:06 +02:00			`break;`
			`}`
			`return TRUE;`
			`}`