diff options
-rw-r--r-- | tools/plink/winnpc.c | 102 |
1 files changed, 102 insertions, 0 deletions
diff --git a/tools/plink/winnpc.c b/tools/plink/winnpc.c new file mode 100644 index 000000000..0e8ac6994 --- /dev/null +++ b/tools/plink/winnpc.c @@ -0,0 +1,102 @@ +/* + * Windows support module which deals with being a named-pipe client. + */ + +#include <stdio.h> +#include <assert.h> + +#define DEFINE_PLUG_METHOD_MACROS +#include "tree234.h" +#include "putty.h" +#include "network.h" +#include "proxy.h" +#include "ssh.h" + +#if !defined NO_SECURITY + +#include "winsecur.h" + +Socket make_handle_socket(HANDLE send_H, HANDLE recv_H, Plug plug, + int overlapped); + +Socket new_named_pipe_client(const char *pipename, Plug plug) +{ + HANDLE pipehandle; + PSID usersid, pipeowner; + PSECURITY_DESCRIPTOR psd; + char *err; + Socket ret; + + assert(strncmp(pipename, "\\\\.\\pipe\\", 9) == 0); + assert(strchr(pipename + 9, '\\') == NULL); + + while (1) { + pipehandle = CreateFile(pipename, GENERIC_READ | GENERIC_WRITE, + 0, NULL, OPEN_EXISTING, + FILE_FLAG_OVERLAPPED, NULL); + + if (pipehandle != INVALID_HANDLE_VALUE) + break; + + if (GetLastError() != ERROR_PIPE_BUSY) { + err = dupprintf("Unable to open named pipe '%s': %s", + pipename, win_strerror(GetLastError())); + ret = new_error_socket(err, plug); + sfree(err); + return ret; + } + + /* + * If we got ERROR_PIPE_BUSY, wait for the server to + * create a new pipe instance. (Since the server is + * expected to be winnps.c, which will do that immediately + * after a previous connection is accepted, that shouldn't + * take excessively long.) + */ + if (!WaitNamedPipe(pipename, NMPWAIT_USE_DEFAULT_WAIT)) { + err = dupprintf("Error waiting for named pipe '%s': %s", + pipename, win_strerror(GetLastError())); + ret = new_error_socket(err, plug); + sfree(err); + return ret; + } + } + + if ((usersid = get_user_sid()) == NULL) { + CloseHandle(pipehandle); + err = dupprintf("Unable to get user SID"); + ret = new_error_socket(err, plug); + sfree(err); + return ret; + } + + if (p_GetSecurityInfo(pipehandle, SE_KERNEL_OBJECT, + OWNER_SECURITY_INFORMATION, + &pipeowner, NULL, NULL, NULL, + &psd) != ERROR_SUCCESS) { + err = dupprintf("Unable to get named pipe security information: %s", + win_strerror(GetLastError())); + ret = new_error_socket(err, plug); + sfree(err); + CloseHandle(pipehandle); + sfree(usersid); + return ret; + } + + if (!EqualSid(pipeowner, usersid)) { + err = dupprintf("Owner of named pipe '%s' is not us", pipename); + ret = new_error_socket(err, plug); + sfree(err); + CloseHandle(pipehandle); + LocalFree(psd); + sfree(usersid); + return ret; + } + + LocalFree(psd); + sfree(usersid); + + return make_handle_socket(pipehandle, pipehandle, plug, TRUE); +} + +#endif /* !defined NO_SECURITY */ |