// Copyright 2012 The Chromium Authors
// Use of this source code is governed by a BSD-style license that can be
// found in the LICENSE file.
#include "remoting/host/sas_injector.h"
#include <memory>
#include <utility>
#include "base/files/file_path.h"
#include "base/logging.h"
#include "base/scoped_native_library.h"
#include "base/win/registry.h"
namespace remoting {
namespace {
// The registry key and value holding the policy controlling software SAS
// generation.
const wchar_t kSystemPolicyKeyName[] =
L"Software\\Microsoft\\Windows\\CurrentVersion\\Policies\\System";
const wchar_t kSoftwareSasValueName[] = L"SoftwareSASGeneration";
const DWORD kEnableSoftwareSasByServices = 1;
// https://docs.microsoft.com/en-us/windows/win32/api/sas/nf-sas-sendsas
typedef void(NTAPI* SendSASFunction)(BOOL);
// Toggles the default software SAS generation policy to enable SAS generation
// by services. Non-default policy is not changed.
class ScopedSoftwareSasPolicy {
public:
ScopedSoftwareSasPolicy();
ScopedSoftwareSasPolicy(const ScopedSoftwareSasPolicy&) = delete;
ScopedSoftwareSasPolicy& operator=(const ScopedSoftwareSasPolicy&) = delete;
~ScopedSoftwareSasPolicy();
bool Apply();
private:
// The handle of the registry key were SoftwareSASGeneration policy is stored.
base::win::RegKey system_policy_;
// True if the policy needs to be restored.
bool restore_policy_ = false;
};
ScopedSoftwareSasPolicy::ScopedSoftwareSasPolicy() = default;
ScopedSoftwareSasPolicy::~ScopedSoftwareSasPolicy() {
// Restore the default policy by deleting the value that we have set.
if (restore_policy_) {
LONG result = system_policy_.DeleteValue(kSoftwareSasValueName);
if (result != ERROR_SUCCESS) {
SetLastError(result);
PLOG(ERROR) << "Failed to restore the software SAS generation policy";
}
}
}
bool ScopedSoftwareSasPolicy::Apply() {
// Query the currently set SoftwareSASGeneration policy.
LONG result =
system_policy_.Open(HKEY_LOCAL_MACHINE, kSystemPolicyKeyName,
KEY_QUERY_VALUE | KEY_SET_VALUE | KEY_WOW64_64KEY);
if (result != ERROR_SUCCESS) {
SetLastError(result);
PLOG(ERROR) << "Failed to open 'HKLM\\" << kSystemPolicyKeyName << "'";
return false;
}
bool custom_policy = system_policy_.HasValue(kSoftwareSasValueName);
// Override the default policy (i.e. there is no value in the registry) only.
if (!custom_policy) {
result = system_policy_.WriteValue(kSoftwareSasValueName,
kEnableSoftwareSasByServices);
if (result != ERROR_SUCCESS) {
SetLastError(result);
PLOG(ERROR) << "Failed to enable software SAS generation by services";
return false;
} else {
restore_policy_ = true;
}
}
return true;
}
} // namespace
// Sends Secure Attention Sequence. Checks the current policy before sending.
class SasInjectorWin : public SasInjector {
public:
SasInjectorWin();
SasInjectorWin(const SasInjectorWin&) = delete;
SasInjectorWin& operator=(const SasInjectorWin&) = delete;
~SasInjectorWin() override;
// SasInjector implementation.
bool InjectSas() override;
};
SasInjectorWin::SasInjectorWin() = default;
SasInjectorWin::~SasInjectorWin() = default;
bool SasInjectorWin::InjectSas() {
// Enable software SAS generation by services and send SAS. SAS can still fail
// if the policy does not allow services to generate software SAS.
ScopedSoftwareSasPolicy enable_sas;
if (!enable_sas.Apply()) {
LOG(ERROR) << "SAS policy could not be applied, skipping SAS injection.";
return false;
}
// Use LoadLibrary here as sas.dll is not consistently shipped on all Windows
// SKUs (notably server releases) and linking against it prevents the host
// from starting correctly.
bool sas_injected = false;
base::ScopedNativeLibrary library(base::FilePath(L"sas.dll"));
if (library.is_valid()) {
SendSASFunction send_sas_func = reinterpret_cast<SendSASFunction>(
library.GetFunctionPointer("SendSAS"));
if (send_sas_func) {
sas_injected = true;
send_sas_func(/*AsUser=*/FALSE);
} else {
LOG(ERROR) << "SendSAS() not found in sas.dll, skipping SAS injection.";
}
} else {
LOG(ERROR) << "sas.dll could not be loaded, skipping SAS injection.";
}
return sas_injected;
}
std::unique_ptr<SasInjector> SasInjector::Create() {
return std::make_unique<SasInjectorWin>();
}
} // namespace remoting
Codebase Browser
chromium