7710ff187b
Prior, people making calls to LoadLibrary/FreeLibrary would experience a failure to create or open adapters, because the private namespace was already loaded into the process and not cleaned up on DLL detachment. While this pattern is probably a misuse of the library, we should still support cleaning that up. This commit makes the right calls to free the boundary descriptor and close the private namespace. It does not, however, destroy the private namespace using the flag on the second parameter, in case of races with other processes. Reported-by: Brad Spencer <bspencer@blackberry.com> Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com>
234 lines
6.8 KiB
C
234 lines
6.8 KiB
C
/* SPDX-License-Identifier: GPL-2.0
|
|
*
|
|
* Copyright (C) 2018-2020 WireGuard LLC. All Rights Reserved.
|
|
*/
|
|
|
|
#include "entry.h"
|
|
#include "logger.h"
|
|
#include "namespace.h"
|
|
|
|
#include <Windows.h>
|
|
#include <winternl.h>
|
|
#include <bcrypt.h>
|
|
#include <wchar.h>
|
|
|
|
static HANDLE PrivateNamespace = NULL;
|
|
static HANDLE BoundaryDescriptor = NULL;
|
|
static CRITICAL_SECTION Initializing;
|
|
static BCRYPT_ALG_HANDLE AlgProvider;
|
|
|
|
static _Return_type_success_(
|
|
return != NULL) WCHAR *NormalizeStringAlloc(_In_ NORM_FORM NormForm, _In_z_ const WCHAR *Source)
|
|
{
|
|
int Len = NormalizeString(NormForm, Source, -1, NULL, 0);
|
|
for (;;)
|
|
{
|
|
WCHAR *Str = Alloc(sizeof(WCHAR) * Len);
|
|
if (!Str)
|
|
return NULL;
|
|
Len = NormalizeString(NormForm, Source, -1, Str, Len);
|
|
if (Len > 0)
|
|
return Str;
|
|
Free(Str);
|
|
if (GetLastError() != ERROR_INSUFFICIENT_BUFFER)
|
|
{
|
|
LOG_LAST_ERROR(L"Failed");
|
|
return NULL;
|
|
}
|
|
Len = -Len;
|
|
}
|
|
}
|
|
|
|
static _Return_type_success_(return != FALSE) BOOL NamespaceRuntimeInit(void)
|
|
{
|
|
DWORD LastError;
|
|
|
|
EnterCriticalSection(&Initializing);
|
|
if (PrivateNamespace)
|
|
{
|
|
LeaveCriticalSection(&Initializing);
|
|
return TRUE;
|
|
}
|
|
|
|
NTSTATUS Status;
|
|
if (!BCRYPT_SUCCESS(Status = BCryptOpenAlgorithmProvider(&AlgProvider, BCRYPT_SHA256_ALGORITHM, NULL, 0)))
|
|
{
|
|
LOG(WINTUN_LOG_ERR, L"Failed to open algorithm provider");
|
|
LastError = RtlNtStatusToDosError(Status);
|
|
goto cleanupLeaveCriticalSection;
|
|
}
|
|
|
|
BYTE Sid[MAX_SID_SIZE];
|
|
DWORD SidSize = MAX_SID_SIZE;
|
|
if (!CreateWellKnownSid(WinLocalSystemSid, NULL, Sid, &SidSize))
|
|
{
|
|
LastError = LOG_LAST_ERROR(L"Failed to create SID");
|
|
goto cleanupBCryptCloseAlgorithmProvider;
|
|
}
|
|
|
|
BoundaryDescriptor = CreateBoundaryDescriptorW(L"Wintun", 0);
|
|
if (!BoundaryDescriptor)
|
|
{
|
|
LastError = LOG_LAST_ERROR(L"Failed to create boundary descriptor");
|
|
goto cleanupBCryptCloseAlgorithmProvider;
|
|
}
|
|
if (!AddSIDToBoundaryDescriptor(&BoundaryDescriptor, Sid))
|
|
{
|
|
LastError = LOG_LAST_ERROR(L"Failed to add SID to boundary descriptor");
|
|
goto cleanupBoundaryDescriptor;
|
|
}
|
|
|
|
for (;;)
|
|
{
|
|
if ((PrivateNamespace = CreatePrivateNamespaceW(&SecurityAttributes, BoundaryDescriptor, L"Wintun")) != NULL)
|
|
break;
|
|
if ((LastError = GetLastError()) == ERROR_ALREADY_EXISTS)
|
|
{
|
|
if ((PrivateNamespace = OpenPrivateNamespaceW(BoundaryDescriptor, L"Wintun")) != NULL)
|
|
break;
|
|
if ((LastError = GetLastError()) == ERROR_PATH_NOT_FOUND)
|
|
continue;
|
|
LOG_ERROR(L"Failed to open private namespace", LastError);
|
|
}
|
|
else
|
|
LOG_ERROR(L"Failed to create private namespace", LastError);
|
|
goto cleanupBoundaryDescriptor;
|
|
}
|
|
|
|
LeaveCriticalSection(&Initializing);
|
|
return TRUE;
|
|
|
|
cleanupBoundaryDescriptor:
|
|
DeleteBoundaryDescriptor(BoundaryDescriptor);
|
|
cleanupBCryptCloseAlgorithmProvider:
|
|
BCryptCloseAlgorithmProvider(AlgProvider, 0);
|
|
cleanupLeaveCriticalSection:
|
|
LeaveCriticalSection(&Initializing);
|
|
SetLastError(LastError);
|
|
return FALSE;
|
|
}
|
|
|
|
_Check_return_
|
|
_Return_type_success_(return != NULL) HANDLE NamespaceTakePoolMutex(_In_z_ const WCHAR *Pool)
|
|
{
|
|
if (!NamespaceRuntimeInit())
|
|
return NULL;
|
|
|
|
BCRYPT_HASH_HANDLE Sha256 = NULL;
|
|
NTSTATUS Status;
|
|
if (!BCRYPT_SUCCESS(Status = BCryptCreateHash(AlgProvider, &Sha256, NULL, 0, NULL, 0, 0)))
|
|
{
|
|
LOG(WINTUN_LOG_ERR, L"Failed to create hash");
|
|
SetLastError(RtlNtStatusToDosError(Status));
|
|
return NULL;
|
|
}
|
|
DWORD LastError;
|
|
static const WCHAR mutex_label[] = L"Wintun Adapter Name Mutex Stable Suffix v1 jason@zx2c4.com";
|
|
if (!BCRYPT_SUCCESS(
|
|
Status = BCryptHashData(Sha256, (PUCHAR)mutex_label, sizeof(mutex_label) /* Including NULL 2 bytes */, 0)))
|
|
{
|
|
LOG(WINTUN_LOG_ERR, L"Failed to hash data");
|
|
LastError = RtlNtStatusToDosError(Status);
|
|
goto cleanupSha256;
|
|
}
|
|
WCHAR *PoolNorm = NormalizeStringAlloc(NormalizationC, Pool);
|
|
if (!PoolNorm)
|
|
{
|
|
LastError = GetLastError();
|
|
goto cleanupSha256;
|
|
}
|
|
if (!BCRYPT_SUCCESS(
|
|
Status = BCryptHashData(Sha256, (PUCHAR)PoolNorm, (int)wcslen(PoolNorm) + 2 /* Add in NULL 2 bytes */, 0)))
|
|
{
|
|
LOG(WINTUN_LOG_ERR, L"Failed to hash data");
|
|
LastError = RtlNtStatusToDosError(Status);
|
|
goto cleanupPoolNorm;
|
|
}
|
|
BYTE Hash[32];
|
|
if (!BCRYPT_SUCCESS(Status = BCryptFinishHash(Sha256, Hash, sizeof(Hash), 0)))
|
|
{
|
|
LOG(WINTUN_LOG_ERR, L"Failed to calculate hash");
|
|
LastError = RtlNtStatusToDosError(Status);
|
|
goto cleanupPoolNorm;
|
|
}
|
|
static const WCHAR MutexNamePrefix[] = L"Wintun\\Wintun-Name-Mutex-";
|
|
WCHAR MutexName[_countof(MutexNamePrefix) + sizeof(Hash) * 2];
|
|
memcpy(MutexName, MutexNamePrefix, sizeof(MutexNamePrefix));
|
|
for (size_t i = 0; i < sizeof(Hash); ++i)
|
|
swprintf_s(&MutexName[_countof(MutexNamePrefix) - 1 + i * 2], 3, L"%02x", Hash[i]);
|
|
HANDLE Mutex = CreateMutexW(&SecurityAttributes, FALSE, MutexName);
|
|
if (!Mutex)
|
|
{
|
|
LastError = LOG_LAST_ERROR(L"Failed to create mutex");
|
|
goto cleanupPoolNorm;
|
|
}
|
|
switch (WaitForSingleObject(Mutex, INFINITE))
|
|
{
|
|
case WAIT_OBJECT_0:
|
|
case WAIT_ABANDONED:
|
|
Free(PoolNorm);
|
|
BCryptDestroyHash(Sha256);
|
|
return Mutex;
|
|
}
|
|
LOG(WINTUN_LOG_ERR, L"Failed to get mutex");
|
|
LastError = ERROR_GEN_FAILURE;
|
|
CloseHandle(Mutex);
|
|
cleanupPoolNorm:
|
|
Free(PoolNorm);
|
|
cleanupSha256:
|
|
BCryptDestroyHash(Sha256);
|
|
SetLastError(LastError);
|
|
return NULL;
|
|
}
|
|
|
|
_Check_return_
|
|
_Return_type_success_(return != NULL) HANDLE NamespaceTakeDriverInstallationMutex(void)
|
|
{
|
|
if (!NamespaceRuntimeInit())
|
|
return NULL;
|
|
HANDLE Mutex = CreateMutexW(&SecurityAttributes, FALSE, L"Wintun\\Wintun-Driver-Installation-Mutex");
|
|
if (!Mutex)
|
|
{
|
|
LOG_LAST_ERROR(L"Failed to create mutex");
|
|
return NULL;
|
|
}
|
|
switch (WaitForSingleObject(Mutex, INFINITE))
|
|
{
|
|
case WAIT_OBJECT_0:
|
|
case WAIT_ABANDONED:
|
|
return Mutex;
|
|
}
|
|
LOG(WINTUN_LOG_ERR, L"Failed to get mutex");
|
|
CloseHandle(Mutex);
|
|
SetLastError(ERROR_GEN_FAILURE);
|
|
return NULL;
|
|
}
|
|
|
|
void
|
|
NamespaceReleaseMutex(_In_ HANDLE Mutex)
|
|
{
|
|
ReleaseMutex(Mutex);
|
|
CloseHandle(Mutex);
|
|
}
|
|
|
|
void
|
|
NamespaceInit(void)
|
|
{
|
|
InitializeCriticalSection(&Initializing);
|
|
}
|
|
|
|
void
|
|
NamespaceDone(void)
|
|
{
|
|
EnterCriticalSection(&Initializing);
|
|
if (PrivateNamespace)
|
|
{
|
|
BCryptCloseAlgorithmProvider(AlgProvider, 0);
|
|
ClosePrivateNamespace(PrivateNamespace, 0);
|
|
DeleteBoundaryDescriptor(BoundaryDescriptor);
|
|
PrivateNamespace = NULL;
|
|
}
|
|
LeaveCriticalSection(&Initializing);
|
|
DeleteCriticalSection(&Initializing);
|
|
}
|