Changeset 40393 in vbox for trunk/src/VBox/Additions/WINNT

Timestamp:

Mar 7, 2012 2:41:37 PM (13 years ago)

Author:

vboxsync

Message:

VBoxCredProv: Fixed reference counting + wiping credentials, logging adjustments.

Location:

trunk/src/VBox/Additions/WINNT/VBoxCredProv

Files:

• VBoxCredProvCredential.cpp (modified) (37 diffs)
• VBoxCredProvCredential.h (modified) (4 diffs)
• VBoxCredProvFactory.cpp (modified) (2 diffs)
• VBoxCredProvFactory.h (modified) (1 diff)
• VBoxCredProvPoller.cpp (modified) (4 diffs)
• VBoxCredProvProvider.cpp (modified) (14 diffs)
• VBoxCredProvProvider.h (modified) (2 diffs)
• VBoxCredentialProvider.cpp (modified) (5 diffs)
• VBoxCredentialProvider.h (modified) (1 diff)

trunk/src/VBox/Additions/WINNT/VBoxCredProv/VBoxCredProvCredential.cpp

@@ -30 +30 @@
 #include <lm.h>
 
+#include <iprt/initterm.h>
 #include <iprt/mem.h>
 #include <iprt/string.h>
@@ -35 +36 @@
 
 
-VBoxCredProvCredential::VBoxCredProvCredential(VBoxCredProvProvider *pProvider) :
+VBoxCredProvCredential::VBoxCredProvCredential(void) :
+    m_cpUS(CPUS_INVALID),
     m_cRefCount(1),
     m_pEvents(NULL)
 {
-    VBoxCredProvVerbose(0, "VBoxCredProvCredential: Created, pProvider=%p\n",
-                        pProvider);
+    VBoxCredProvVerbose(0, "VBoxCredProvCredential: Created\n");
 
     VBoxCredentialProviderAcquire();
 
-    AssertPtr(pProvider);
-    m_pProvider = pProvider;
-
-    ZeroMemory(m_pwszCredentials, sizeof(m_pwszCredentials));
+    ZeroMemory(m_pwszCredentials, sizeof(PRTUTF16) * VBOXCREDPROV_NUM_FIELDS);
 }
 
@@ -54 +52 @@
 {
     VBoxCredProvVerbose(0, "VBoxCredProvCredential: Destroying\n");
+
+    Reset();
 
     VBoxCredentialProviderRelease();
@@ -62 +62 @@
 ULONG VBoxCredProvCredential::AddRef(void)
 {
-    VBoxCredProvVerbose(0, "VBoxCredProvCredential: Increasing reference to %ld\n",
-                        m_cRefCount + 1);
-
-    return m_cRefCount++;
+    LONG cRefCount = InterlockedIncrement(&m_cRefCount);
+    VBoxCredProvVerbose(0, "VBoxCredProvCredential::AddRef: Returning refcount=%ld\n",
+                        cRefCount);
+    return cRefCount;
 }
 
@@ -71 +71 @@
 ULONG VBoxCredProvCredential::Release(void)
 {
-    Assert(m_cRefCount);
-
-    ULONG cRefCount = --m_cRefCount;
-    VBoxCredProvVerbose(0, "VBoxCredProvCredential: Decreasing reference to %ld\n",
+    LONG cRefCount = InterlockedDecrement(&m_cRefCount);
+    VBoxCredProvVerbose(0, "VBoxCredProvCredential::Release: Returning refcount=%ld\n",
                         cRefCount);
     if (!cRefCount)
@@ -127 +125 @@
                                                    bool fCopy)
 {
+    AssertPtrReturn(pUnicodeDest, VERR_INVALID_POINTER);
     AssertPtrReturn(pwszSource, VERR_INVALID_POINTER);
-    AssertPtrReturn(pUnicodeDest, VERR_INVALID_POINTER);
 
     size_t cbLen = RTUtf16Len(pwszSource) * sizeof(RTUTF16);
@@ -165 +163 @@
 
 #ifdef DEBUG
-    VBoxCredProvVerbose(3, "VBoxCredProvCredential: AllocateLogonPackage: Allocating %ld bytes (%d bytes credentials)\n",
+    VBoxCredProvVerbose(3, "VBoxCredProvCredential::AllocateLogonPackage: Allocating %ld bytes (%d bytes credentials)\n",
                         cbLogon, cbLogon - sizeof(KERB_INTERACTIVE_UNLOCK_LOGON));
 #endif
@@ -207 +205 @@
 
 
-void VBoxCredProvCredential::Reset(void)
-{
-    VBoxCredProvVerbose(0, "VBoxCredProvCredential: Wiping credentials ...\n");
+HRESULT VBoxCredProvCredential::Reset(void)
+{
+
+    VBoxCredProvVerbose(0, "VBoxCredProvCredential::Reset: Wiping credentials user=%ls, pw=%ls, domain=%ls\n",
+                        m_pwszCredentials[VBOXCREDPROV_FIELDID_USERNAME],
+#ifdef DEBUG
+                        m_pwszCredentials[VBOXCREDPROV_FIELDID_PASSWORD],
+#else
+                        L"XXX" /* Don't show any passwords in release mode. */,
+#endif
+                        m_pwszCredentials[VBOXCREDPROV_FIELDID_DOMAINNAME]);
 
     VbglR3CredentialsDestroyUtf16(m_pwszCredentials[VBOXCREDPROV_FIELDID_USERNAME],
@@ -215 +221 @@
                                   m_pwszCredentials[VBOXCREDPROV_FIELDID_DOMAINNAME],
                                   3 /* Passes */);
+    HRESULT hr = S_OK;
     if (m_pEvents)
     {
-        m_pEvents->SetFieldString(this, VBOXCREDPROV_FIELDID_USERNAME, NULL);
-        m_pEvents->SetFieldString(this, VBOXCREDPROV_FIELDID_PASSWORD, NULL);
-        m_pEvents->SetFieldString(this, VBOXCREDPROV_FIELDID_DOMAINNAME, NULL);
-    }
+        /* Note: On Windows 8, set "this" to "nullptr". */
+        HRESULT hr2 = m_pEvents->SetFieldString(this, VBOXCREDPROV_FIELDID_USERNAME, L"");
+        if (SUCCEEDED(hr))
+            hr = hr2;
+        hr2 = m_pEvents->SetFieldString(this, VBOXCREDPROV_FIELDID_PASSWORD, L"");
+        if (SUCCEEDED(hr))
+            hr = hr2;
+        hr2 = m_pEvents->SetFieldString(this, VBOXCREDPROV_FIELDID_DOMAINNAME, L"");
+        if (SUCCEEDED(hr))
+            hr = hr2;
+    }
+
+    VBoxCredProvVerbose(0, "VBoxCredProvCredential::Reset: Returned hr=%08x\n", hr);
+    return hr;
 }
 
@@ -240 +257 @@
                                             &m_pwszCredentials[VBOXCREDPROV_FIELDID_DOMAINNAME]);
 
-        VBoxCredProvVerbose(0, "VBoxCredProvCredential: Retrieving credentials returned rc=%Rrc\n", rc);
+        VBoxCredProvVerbose(0, "VBoxCredProvCredential::RetrieveCredentials: Retrieved credentials with rc=%Rrc\n", rc);
     }
 
     if (RT_SUCCESS(rc))
     {
-        VBoxCredProvVerbose(0, "VBoxCredProvCredential: Got credentials: User=%ls, Password=%ls, Domain=%ls\n",
+        VBoxCredProvVerbose(0, "VBoxCredProvCredential::RetrieveCredentials: User=%ls, Password=%ls, Domain=%ls\n",
                             m_pwszCredentials[VBOXCREDPROV_FIELDID_USERNAME],
 #ifdef DEBUG
@@ -262 +279 @@
         if (TranslateAccountName(m_pwszCredentials[VBOXCREDPROV_FIELDID_USERNAME], &pwszAcount))
         {
-            VBoxCredProvVerbose(0, "VBoxCredProvCredential: Translated account name %ls -> %ls\n",
+            VBoxCredProvVerbose(0, "VBoxCredProvCredential::RetrieveCredentials: Translated account name %ls -> %ls\n",
                                 m_pwszCredentials[VBOXCREDPROV_FIELDID_USERNAME], pwszAcount);
 
-            RTUtf16Free(m_pwszCredentials[VBOXCREDPROV_FIELDID_USERNAME]);
+            if (m_pwszCredentials[VBOXCREDPROV_FIELDID_USERNAME])
+            {
+                RTMemWipeThoroughly(m_pwszCredentials[VBOXCREDPROV_FIELDID_USERNAME],
+                                    RTUtf16Len(m_pwszCredentials[VBOXCREDPROV_FIELDID_USERNAME]) + sizeof(RTUTF16), 3 /* Passes */);
+                RTUtf16Free(m_pwszCredentials[VBOXCREDPROV_FIELDID_USERNAME]);
+            }
             m_pwszCredentials[VBOXCREDPROV_FIELDID_USERNAME] = pwszAcount;
         }
@@ -281 +303 @@
             {
                 /* Update user name. */
-                RTUtf16Free(m_pwszCredentials[VBOXCREDPROV_FIELDID_USERNAME]);
+                if (m_pwszCredentials[VBOXCREDPROV_FIELDID_USERNAME])
+                {
+                    RTMemWipeThoroughly(m_pwszCredentials[VBOXCREDPROV_FIELDID_USERNAME],
+                                        RTUtf16Len(m_pwszCredentials[VBOXCREDPROV_FIELDID_USERNAME]) + sizeof(RTUTF16), 3 /* Passes */);
+                    RTUtf16Free(m_pwszCredentials[VBOXCREDPROV_FIELDID_USERNAME]);
+                }
                 m_pwszCredentials[VBOXCREDPROV_FIELDID_USERNAME] = pwszAcount;
 
                 /* Update domain. */
-                RTUtf16Free(m_pwszCredentials[VBOXCREDPROV_FIELDID_DOMAINNAME]);
+                if (m_pwszCredentials[VBOXCREDPROV_FIELDID_DOMAINNAME])
+                {
+                    RTMemWipeThoroughly(m_pwszCredentials[VBOXCREDPROV_FIELDID_DOMAINNAME],
+                                        RTUtf16Len(m_pwszCredentials[VBOXCREDPROV_FIELDID_DOMAINNAME]) + sizeof(RTUTF16), 3 /* Passes */);
+                    RTUtf16Free(m_pwszCredentials[VBOXCREDPROV_FIELDID_DOMAINNAME]);
+                }
                 m_pwszCredentials[VBOXCREDPROV_FIELDID_DOMAINNAME] = pwszDomain;
 
-                VBoxCredProvVerbose(0, "VBoxCredProvCredential: Extracted account data is pwszAccount=%ls, pwszDomain=%ls\n",
-                                    pwszAcount, pwszDomain);
+                VBoxCredProvVerbose(0, "VBoxCredProvCredential::RetrieveCredentials: Extracted account data pwszAccount=%ls, pwszDomain=%ls\n",
+                                    m_pwszCredentials[VBOXCREDPROV_FIELDID_USERNAME],
+                                    m_pwszCredentials[VBOXCREDPROV_FIELDID_DOMAINNAME]);
             }
         }
     }
 
-    VBoxCredProvVerbose(0, "VBoxCredProvCredential: Checking credentials returned with rc=%Rrc\n", rc);
+    VBoxCredProvVerbose(0, "VBoxCredProvCredential::RetrieveCredentials: Returned rc=%Rrc\n", rc);
     return rc;
 }
@@ -306 +339 @@
 HRESULT VBoxCredProvCredential::Initialize(CREDENTIAL_PROVIDER_USAGE_SCENARIO cpUS)
 {
-    VBoxCredProvVerbose(0, "VBoxCredProvCredential: Initialize: cpUS=%ld\n", cpUS);
+    VBoxCredProvVerbose(0, "VBoxCredProvCredential::Initialize: cpUS=%ld\n", cpUS);
 
     m_cpUS = cpUS;
@@ -318 +351 @@
  * Store this callback pointer for later use.
  */
-HRESULT VBoxCredProvCredential::Advise(ICredentialProviderCredentialEvents* pcpce)
-{
-    VBoxCredProvVerbose(0, "VBoxCredProvCredential: Advise\n");
-
-    if (m_pEvents != NULL)
+HRESULT VBoxCredProvCredential::Advise(ICredentialProviderCredentialEvents *pEvents)
+{
+    VBoxCredProvVerbose(0, "VBoxCredProvCredential::Advise: pEvents=0x%p\n",
+                        pEvents);
+
+    if (m_pEvents)
+    {
         m_pEvents->Release();
-    m_pEvents = pcpce;
-    m_pEvents->AddRef();
+        m_pEvents = NULL;
+    }
+
+    m_pEvents = pEvents;
+    if (m_pEvents)
+        m_pEvents->AddRef();
+
     return S_OK;
 }
@@ -333 +373 @@
 HRESULT VBoxCredProvCredential::UnAdvise(void)
 {
-    VBoxCredProvVerbose(0, "VBoxCredProvCredential: UnAdvise\n");
-
-    /*
-     * We're done with the current iteration, trigger a refresh of ourselves
-     * to reset credentials and to keep the logon UI clean (no stale entries anymore).
-     */
-    Reset();
-
-    /*
-     * Force a re-iteration of the provider (which will give zero credentials
-     * to try out because we just reset our one and only a line above.
-     */
-    if (m_pProvider)
-        m_pProvider->OnCredentialsProvided();
+    VBoxCredProvVerbose(0, "VBoxCredProvCredential::UnAdvise\n");
 
     if (m_pEvents)
+    {
         m_pEvents->Release();
-    m_pEvents = NULL;
+        m_pEvents = NULL;
+    }
+
     return S_OK;
 }
@@ -363 +393 @@
  * selected, you would do it here.
  */
-HRESULT VBoxCredProvCredential::SetSelected(BOOL* pbAutoLogon)
-{
-    VBoxCredProvVerbose(0, "VBoxCredProvCredential: SetSelected\n");
+HRESULT VBoxCredProvCredential::SetSelected(BOOL *pbAutoLogon)
+{
+    VBoxCredProvVerbose(0, "VBoxCredProvCredential::SetSelected\n");
 
     /*
@@ -372 +402 @@
      * winlogon wait before new login attempts can be made.
      */
-    *pbAutoLogon = FALSE;
+    if (pbAutoLogon)
+        *pbAutoLogon = FALSE;
     return S_OK;
 }
@@ -382 +413 @@
  * is to clear out the password field.
  */
-HRESULT VBoxCredProvCredential::SetDeselected()
-{
-    VBoxCredProvVerbose(0, "VBoxCredProvCredential: SetDeselected\n");
-
-    VbglR3CredentialsDestroyUtf16(m_pwszCredentials[VBOXCREDPROV_FIELDID_USERNAME],
-                                  m_pwszCredentials[VBOXCREDPROV_FIELDID_PASSWORD],
-                                  m_pwszCredentials[VBOXCREDPROV_FIELDID_DOMAINNAME],
-                                  3 /* Passes */);
+HRESULT VBoxCredProvCredential::SetDeselected(void)
+{
+    VBoxCredProvVerbose(0, "VBoxCredProvCredential::SetDeselected\n");
+
+    Reset();
 
     if (m_pEvents)
@@ -406 +434 @@
                                               CREDENTIAL_PROVIDER_FIELD_INTERACTIVE_STATE* pFieldstateInteractive)
 {
-    VBoxCredProvVerbose(0, "VBoxCredProvCredential: GetFieldState: dwFieldID=%ld\n", dwFieldID);
+    VBoxCredProvVerbose(0, "VBoxCredProvCredential::GetFieldState: dwFieldID=%ld\n", dwFieldID);
 
     HRESULT hr = S_OK;
@@ -431 +459 @@
 {
     AssertPtrReturn(pwszDisplayName, FALSE);
-    VBoxCredProvVerbose(0, "VBoxCredProvCredential: TranslateAccountName: Getting account name for \"%ls\" ...\n",
+    VBoxCredProvVerbose(0, "VBoxCredProvCredential::TranslateAccountName: Getting account name for \"%ls\" ...\n",
                         pwszDisplayName);
 
@@ -482 +510 @@
                         }
                         else
-                            VBoxCredProvVerbose(0, "VBoxCredProvCredential: TranslateAccountName: Error copying data, hr=%08x\n", hr);
+                            VBoxCredProvVerbose(0, "VBoxCredProvCredential::TranslateAccountName: Error copying data, hr=%08x\n", hr);
                         break;
                     }
@@ -502 +530 @@
     }
 
-    VBoxCredProvVerbose(0, "VBoxCredProvCredential: TranslateAccountName: Returned nStatus=%ld, fFound=%s\n",
-                        nStatus, fFound ? "Yes" : "No");
+    VBoxCredProvVerbose(0, "VBoxCredProvCredential::TranslateAccountName returned nStatus=%ld, fFound=%RTbool\n",
+                        nStatus, fFound);
     return fFound;
 
@@ -512 +540 @@
         && cbLen > 0)
     {
-        VBoxCredProvVerbose(0, "VBoxCredProvCredential: GetAccountName: Translated ADS name has %u characters\n", cbLen));
+        VBoxCredProvVerbose(0, "VBoxCredProvCredential::GetAccountName: Translated ADS name has %u characters\n", cbLen));
 
         ppwszAccoutName = (PWSTR)RTMemAlloc(cbLen * sizeof(WCHAR));
@@ -518 +546 @@
         if (TranslateNameW(pwszName, NameUnknown, NameUserPrincipal, ppwszAccoutName, &cbLen))
         {
-            VBoxCredProvVerbose(0, "VBoxCredProvCredential: GetAccountName: Real ADS account name of '%ls' is '%ls'\n",
+            VBoxCredProvVerbose(0, "VBoxCredProvCredential::GetAccountName: Real ADS account name of '%ls' is '%ls'\n",
                  pwszName, ppwszAccoutName));
         }
@@ -546 +574 @@
 {
     AssertPtrReturn(pwszAccountData, FALSE);
-    VBoxCredProvVerbose(0, "VBoxCredProvCredential: ExtractAccoutData: Getting account name for \"%ls\" ...\n",
+    VBoxCredProvVerbose(0, "VBoxCredProvCredential::ExtractAccoutData: Getting account name for \"%ls\" ...\n",
                         pwszAccountData);
     HRESULT hr = E_FAIL;
@@ -573 +601 @@
                 }
                 else
-                    VBoxCredProvVerbose(0, "VBoxCredProvCredential: ExtractAccoutData: Error copying domain data, hr=%08x\n", hr);
+                    VBoxCredProvVerbose(0, "VBoxCredProvCredential::ExtractAccoutData: Error copying domain data, hr=%08x\n", hr);
             }
             else
             {
                 hr = E_FAIL;
-                VBoxCredProvVerbose(0, "VBoxCredProvCredential: ExtractAccoutData: No domain name found!\n");
+                VBoxCredProvVerbose(0, "VBoxCredProvCredential::ExtractAccoutData: No domain name found!\n");
             }
         }
         else
-            VBoxCredProvVerbose(0, "VBoxCredProvCredential: ExtractAccoutData: Error copying account data, hr=%08x\n", hr);
+            VBoxCredProvVerbose(0, "VBoxCredProvCredential::ExtractAccoutData: Error copying account data, hr=%08x\n", hr);
 
         if (hr != S_OK)
@@ -592 +620 @@
     }
     else
-        VBoxCredProvVerbose(0, "VBoxCredProvCredential: ExtractAccoutData: No valid principal account name found!\n");
+        VBoxCredProvVerbose(0, "VBoxCredProvCredential::ExtractAccoutData: No valid principal account name found!\n");
 
     return (hr == S_OK);
@@ -632 +660 @@
 #ifdef DEBUG
         if (SUCCEEDED(hr))
-            VBoxCredProvVerbose(0, "VBoxCredProvCredential: GetStringValue: dwFieldID=%ld, ppwszString=%ls\n",
+            VBoxCredProvVerbose(0, "VBoxCredProvCredential::GetStringValue: dwFieldID=%ld, ppwszString=%ls\n",
                                 dwFieldID, *ppwszString);
 #endif
@@ -651 +679 @@
                                                      DWORD* pdwAdjacentTo)
 {
-    VBoxCredProvVerbose(0, "VBoxCredProvCredential: GetSubmitButtonValue: dwFieldID=%ld\n", dwFieldID);
+    VBoxCredProvVerbose(0, "VBoxCredProvCredential::GetSubmitButtonValue: dwFieldID=%ld\n", dwFieldID);
 
     HRESULT hr = S_OK;
@@ -661 +689 @@
         /* pdwAdjacentTo is a pointer to the fieldID you want the submit button to appear next to. */
         *pdwAdjacentTo = VBOXCREDPROV_FIELDID_PASSWORD;
-        VBoxCredProvVerbose(0, "VBoxCredProvCredential: GetSubmitButtonValue: dwFieldID=%ld, *pdwAdjacentTo=%ld\n",
+        VBoxCredProvVerbose(0, "VBoxCredProvCredential::GetSubmitButtonValue: dwFieldID=%ld, *pdwAdjacentTo=%ld\n",
                             dwFieldID, *pdwAdjacentTo);
     }
@@ -678 +706 @@
                                                PCWSTR pcwzString)
 {
-    VBoxCredProvVerbose(0, "VBoxCredProvCredential: SetStringValue: dwFieldID=%ld, pcwzString=%ls\n",
+#ifdef DEBUG
+    VBoxCredProvVerbose(0, "VBoxCredProvCredential::SetStringValue: dwFieldID=%ld, pcwzString=%ls\n",
                         dwFieldID, pcwzString);
-
-    /*
-     * We don't set any values into fields (e.g. the password, hidden
-     * by dots), instead keep it secret by resetting all credentials.
-     */
-    Reset();
-
-    return S_OK;
+#endif
+
+    /* Do more things here later. */
+    HRESULT hr = S_OK;
+
+    VBoxCredProvVerbose(0, "VBoxCredProvCredential::SetStringValue returned with hr=%08x\n", hr);
+    return hr;
 }
 
@@ -787 +815 @@
 
 #ifdef DEBUG
-    VBoxCredProvVerbose(0, "VBoxCredProvCredential: GetSerialization: Username=%ls, Password=%ls, Domain=%ls\n",
+    VBoxCredProvVerbose(0, "VBoxCredProvCredential::GetSerialization: Username=%ls, Password=%ls, Domain=%ls\n",
                         m_pwszCredentials[VBOXCREDPROV_FIELDID_USERNAME],
                         m_pwszCredentials[VBOXCREDPROV_FIELDID_PASSWORD],
@@ -793 +821 @@
 #endif
 
-    WCHAR wszComputerName[MAX_COMPUTERNAME_LENGTH + 1];
-    DWORD cch = ARRAYSIZE(wszComputerName);
-    if (GetComputerNameW(wszComputerName, &cch))
-    {
-        /* Is a domain name missing? Then use the name of the local computer. */
-        if (   m_pwszCredentials[VBOXCREDPROV_FIELDID_DOMAINNAME]
-            && RTUtf16Len(m_pwszCredentials[VBOXCREDPROV_FIELDID_DOMAINNAME]))
-        {
-            hr = RTUTF16toToUnicode(&pKerberosLogon->LogonDomainName,
-                                    m_pwszCredentials[VBOXCREDPROV_FIELDID_DOMAINNAME],
-                                    false /* Just assign, no copy */);
-        }
-        else
+    /* Do we have a domain name set? */
+    if (   m_pwszCredentials[VBOXCREDPROV_FIELDID_DOMAINNAME]
+        && RTUtf16Len(m_pwszCredentials[VBOXCREDPROV_FIELDID_DOMAINNAME]))
+    {
+        hr = RTUTF16toToUnicode(&pKerberosLogon->LogonDomainName,
+                                m_pwszCredentials[VBOXCREDPROV_FIELDID_DOMAINNAME],
+                                false /* Just assign, no copy */);
+    }
+    else /* No domain (FQDN) given, try local computer name. */
+    {
+        WCHAR wszComputerName[MAX_COMPUTERNAME_LENGTH + 1];
+        DWORD cch = ARRAYSIZE(wszComputerName);
+        if (GetComputerNameW(wszComputerName, &cch))
+        {
+            /* Is a domain name missing? Then use the name of the local computer. */
             hr = RTUTF16toToUnicode(&pKerberosLogon->LogonDomainName,
                                     wszComputerName,
                                     false /* Just assign, no copy */);
 
+            VBoxCredProvVerbose(0, "VBoxCredProvCredential::GetSerialization: Local computer name=%ls\n",
+                                wszComputerName);
+        }
+        else
+            hr = HRESULT_FROM_WIN32(GetLastError());
+    }
+
+    if (SUCCEEDED(hr))
+    {
         /* Fill in the username and password. */
         if (SUCCEEDED(hr))
@@ -844 +883 @@
                     }
 
-                    if (SUCCEEDED(hr))
-                    {
-                        /* Allocate copies of, and package, the strings in a binary blob. */
+                    if (SUCCEEDED(hr)) /* Build the logon package. */
                         hr = AllocateLogonPackage(KerberosUnlockLogon,
                                                   &pcpCredentialSerialization->rgbSerialization,
                                                   &pcpCredentialSerialization->cbSerialization);
-                    }
 
                     if (SUCCEEDED(hr))
@@ -900 +936 @@
         }
     }
-    else
-        hr = HRESULT_FROM_WIN32(GetLastError());
-
-    VBoxCredProvVerbose(0, "VBoxCredProvCredential: GetSerialization: Returned 0x%08x\n", hr);
+
+    VBoxCredProvVerbose(0, "VBoxCredProvCredential::GetSerialization returned hr=0x%08x\n", hr);
     return hr;
 }
@@ -914 +948 @@
  * being disabled.
  */
-HRESULT VBoxCredProvCredential::ReportResult(NTSTATUS                         ntsStatus,
-                                             NTSTATUS                         ntsSubstatus,
+HRESULT VBoxCredProvCredential::ReportResult(NTSTATUS                         ntStatus,
+                                             NTSTATUS                         ntSubStatus,
                                              PWSTR                           *ppwszOptionalStatusText,
                                              CREDENTIAL_PROVIDER_STATUS_ICON *pcpsiOptionalStatusIcon)
@@ -923 +957 @@
      * this function can't fail
      */
+    VBoxCredProvVerbose(0, "VBoxCredProvCredential::ReportResult: ntStatus=%ld, ntSubStatus=%ld\n",
+                        ntStatus, ntSubStatus);
     return S_OK;
 }

trunk/src/VBox/Additions/WINNT/VBoxCredProv/VBoxCredProvCredential.h

@@ -43 +43 @@
     public:
 
-        VBoxCredProvCredential(VBoxCredProvProvider *pProvider);
+        VBoxCredProvCredential(void);
 
         virtual ~VBoxCredProvCredential(void);
@@ -81 +81 @@
                                          PWSTR                                         *ppwszOptionalStatusText,
                                          CREDENTIAL_PROVIDER_STATUS_ICON               *pcpsiOptionalStatusIcon);
-        IFACEMETHODIMP ReportResult(NTSTATUS                         ntsStatus,
-                                    NTSTATUS                         ntsSubstatus,
+        IFACEMETHODIMP ReportResult(NTSTATUS                         ntStatus,
+                                    NTSTATUS                         ntSubStatus,
                                     PWSTR*                           ppwszOptionalStatusText,
                                     CREDENTIAL_PROVIDER_STATUS_ICON* pcpsiOptionalStatusIcon);
@@ -88 +88 @@
     public:
 
-        void Reset(void);
+        HRESULT Reset(void);
         HRESULT Initialize(CREDENTIAL_PROVIDER_USAGE_SCENARIO cpus);
         int RetrieveCredentials(void);
@@ -102 +102 @@
     private:
 
-        /** Pointer to parent. */
-        VBoxCredProvProvider                 *m_pProvider;
         /** Internal reference count. */
-        ULONG                                 m_cRefCount;
+        LONG                                  m_cRefCount;
         /** The usage scenario for which we were enumerated. */
         CREDENTIAL_PROVIDER_USAGE_SCENARIO    m_cpUS;

trunk/src/VBox/Additions/WINNT/VBoxCredProv/VBoxCredProvFactory.cpp

@@ -35 +35 @@
 ULONG VBoxCredProvFactory::AddRef(void)
 {
-    VBoxCredProvVerbose(0, "VBoxCredProvFactory: Increasing reference from %ld to %ld\n",
-                        m_cRefCount, m_cRefCount + 1);
-
-    return m_cRefCount++;
+    LONG cRefCount = InterlockedIncrement(&m_cRefCount);
+    VBoxCredProvVerbose(0, "VBoxCredProvFactory: AddRef: Returning refcount=%ld\n",
+                        cRefCount);
+    return cRefCount;
 }
 
 ULONG VBoxCredProvFactory::Release(void)
 {
-    VBoxCredProvVerbose(0, "VBoxCredProvFactory: Decreasing reference from %ld to %ld\n",
-                        m_cRefCount, m_cRefCount - 1);
-
-    ULONG cRefCount = --m_cRefCount;
+    LONG cRefCount = InterlockedDecrement(&m_cRefCount);
+    VBoxCredProvVerbose(0, "VBoxCredProvFactory: Release: Returning refcount=%ld\n",
+                        cRefCount);
     if (!cRefCount)
     {
@@ -57 +56 @@
 HRESULT VBoxCredProvFactory::QueryInterface(REFIID interfaceID, void **ppvInterface)
 {
+    VBoxCredProvVerbose(0, "VBoxCredProvFactory: QueryInterface\n");
+
     HRESULT hr = S_OK;
     if (ppvInterface)

trunk/src/VBox/Additions/WINNT/VBoxCredProv/VBoxCredProvFactory.h

@@ -47 +47 @@
     private:
 
-        ULONG m_cRefCount;
+        LONG m_cRefCount;
         friend HRESULT VBoxCredentialProviderCreate(REFCLSID rclsid, REFIID riid, void** ppv);
 };

trunk/src/VBox/Additions/WINNT/VBoxCredProv/VBoxCredProvPoller.cpp

@@ -39 +39 @@
 VBoxCredProvPoller::~VBoxCredProvPoller(void)
 {
+    VBoxCredProvVerbose(0, "VBoxCredProvPoller: Destroying ...\n");
+
     Shutdown();
 }
@@ -52 +54 @@
     if (m_hThreadPoller != NIL_RTTHREAD)
     {
-        VBoxCredProvVerbose(0, "VBoxCredProvPoller: Thread already running, returning!\n");
+        VBoxCredProvVerbose(0, "VBoxCredProvPoller: Thread already running, returning\n");
         return VINF_SUCCESS;
     }
@@ -58 +60 @@
     if (m_pProv != NULL)
         m_pProv->Release();
+
     m_pProv = pProvider;
-    AssertPtr(m_pProv);
+    /*
+     * We must not add a reference via AddRef() here, otherwise
+     * the credential provider does not get destructed properly.
+     * In order to get this thread terminated normally the credential
+     * provider has to call Shutdown().
+     */
 
     /* Create the poller thread. */
@@ -85 +93 @@
         /* Wait until the thread has terminated. */
         rc = RTThreadWait(m_hThreadPoller, RT_INDEFINITE_WAIT, NULL);
-        VBoxCredProvVerbose(0, "VBoxCredProvPoller: Thread has (probably) terminated (rc=%Rrc)\n", rc);
+        if (RT_FAILURE(rc))
+            VBoxCredProvVerbose(0, "VBoxCredProvPoller: Wait returned error rc=%Rrc\n", rc);
     }
     else
-    {
-        /* Failed to signal the thread - very unlikely - so no point in waiting long. */
-        VBoxCredProvVerbose(0, "VBoxCredProvPoller::Shutdown: Failed to signal semaphore, rc=%Rrc\n", rc);
-        rc = RTThreadWait(m_hThreadPoller, 100, NULL);
-        VBoxCredProvVerbose(0, "VBoxCredProvPoller::Shutdown: Thread has terminated? Wait rc=%Rrc\n", rc);
-    }
+        VBoxCredProvVerbose(0, "VBoxCredProvPoller: Error waiting for thread shutdown, rc=%Rrc\n", rc);
 
+    m_pProv = NULL;
     m_hThreadPoller = NIL_RTTHREAD;
+
+    VBoxCredProvVerbose(0, "VBoxCredProvPoller: Shutdown returned with rc=%Rrc\n", rc);
     return rc;
 }

trunk/src/VBox/Additions/WINNT/VBoxCredProv/VBoxCredProvProvider.cpp

@@ -30 +30 @@
     m_pPoller(NULL),
     m_pCred(NULL),
-    m_pCredProvEvents(NULL),
-    m_fGotCredentials(false),
+    m_pEvents(NULL),
     m_fHandleRemoteSessions(false)
 {
-    LONG cRefCount = VBoxCredentialProviderAcquire();
+    VBoxCredentialProviderAcquire();
 
     VBoxCredProvReportStatus(VBoxGuestFacilityStatus_Init);
@@ -42 +41 @@
 VBoxCredProvProvider::~VBoxCredProvProvider(void)
 {
+    VBoxCredProvVerbose(0, "VBoxCredProv: Destroying\n");
+
     if (m_pCred)
     {
@@ -55 +56 @@
     }
 
-    ULONG cRefCount = VBoxCredentialProviderRefCount();
-    VBoxCredProvVerbose(0, "VBoxCredProv: Destroying (global DLL refcount=%ld)\n", cRefCount);
-
     VBoxCredProvReportStatus(VBoxGuestFacilityStatus_Terminated);
 
@@ -67 +65 @@
 ULONG VBoxCredProvProvider::AddRef(void)
 {
-    VBoxCredProvVerbose(0, "VBoxCredProv: Increasing reference from %ld to %ld\n",
-                        m_cRefCount, m_cRefCount + 1);
-
-    return m_cRefCount++;
+    LONG cRefCount = InterlockedIncrement(&m_cRefCount);
+    VBoxCredProvVerbose(0, "VBoxCredProv: AddRef: Returning refcount=%ld\n",
+                        cRefCount);
+    return cRefCount;
 }
 
@@ -76 +74 @@
 ULONG VBoxCredProvProvider::Release(void)
 {
-    Assert(m_cRefCount);
-
-    VBoxCredProvVerbose(0, "VBoxCredProv: Decreasing reference from %ld to %ld\n",
-                        m_cRefCount, m_cRefCount - 1);
-
-    ULONG cRefCount = --m_cRefCount;
+    LONG cRefCount = InterlockedDecrement(&m_cRefCount);
+    VBoxCredProvVerbose(0, "VBoxCredProv: Release: Returning refcount=%ld\n",
+                        cRefCount);
     if (!cRefCount)
     {
@@ -203 +198 @@
     HRESULT hr = S_OK;
     DWORD dwErr;
+
+    VBoxCredProvVerbose(0, "VBoxCredProv::SetUsageScenario: cpUS=%d, dwFlags=%ld\n",
+                        cpUsageScenario, dwFlags);
 
     m_cpUsageScenario = cpUsageScenario;
@@ -238 +236 @@
             if (!m_pCred)
             {
-                m_pCred = new VBoxCredProvCredential(this);
+                m_pCred = new VBoxCredProvCredential();
                 if (m_pCred)
                 {
@@ -251 +249 @@
             }
 
-            /* If we did fail -> cleanup */
+            /* If we failed, do some cleanup. */
             if (FAILED(hr))
             {
@@ -275 +273 @@
     }
 
-    VBoxCredProvVerbose(0, "VBoxCredProv::SetUsageScenario returned hr=0x%08x (cpUS=%d, dwFlags=%ld)\n",
-                        hr, cpUsageScenario, dwFlags);
+    VBoxCredProvVerbose(0, "VBoxCredProv::SetUsageScenario returned hr=0x%08x\n", hr);
     return hr;
 }
@@ -308 +305 @@
                                      UINT_PTR                   upAdviseContext)
 {
-    VBoxCredProvVerbose(0, "VBoxCredProv::Advise\n");
-
-    if (m_pCredProvEvents != NULL)
-        m_pCredProvEvents->Release();
-
-    m_pCredProvEvents = pcpEvents;
-    AssertPtr(m_pCredProvEvents);
-    m_pCredProvEvents->AddRef();
+    VBoxCredProvVerbose(0, "VBoxCredProv::Advise, pcpEvents=0x%p, upAdviseContext=%u\n",
+                        pcpEvents, upAdviseContext);
+    if (m_pEvents)
+    {
+        m_pEvents->Release();
+        m_pEvents = NULL;
+    }
+
+    m_pEvents = pcpEvents;
+    if (m_pEvents)
+        m_pEvents->AddRef();
 
     /*
@@ -329 +329 @@
 HRESULT VBoxCredProvProvider::UnAdvise(void)
 {
-    VBoxCredProvVerbose(0, "VBoxCredProv::UnAdvise\n");
-    if (m_pCredProvEvents != NULL)
-    {
-        m_pCredProvEvents->Release();
-        m_pCredProvEvents = NULL;
+    VBoxCredProvVerbose(0, "VBoxCredProv::UnAdvise: pEvents=0x%p\n",
+                        m_pEvents);
+    if (m_pEvents)
+    {
+        m_pEvents->Release();
+        m_pEvents = NULL;
     }
 
@@ -350 +351 @@
 HRESULT VBoxCredProvProvider::GetFieldDescriptorCount(DWORD *pdwCount)
 {
-    Assert(pdwCount);
-    *pdwCount = VBOXCREDPROV_NUM_FIELDS;
-
-    VBoxCredProvVerbose(0, "VBoxCredProv::GetFieldDescriptorCount: %ld\n", *pdwCount);
+    if (pdwCount)
+    {
+        *pdwCount = VBOXCREDPROV_NUM_FIELDS;
+        VBoxCredProvVerbose(0, "VBoxCredProv::GetFieldDescriptorCount: %ld\n", *pdwCount);
+    }
     return S_OK;
 }
@@ -457 +459 @@
     HRESULT hr;
 
-    VBoxCredProvVerbose(0, "VBoxCredProv::GetCredentialAt: Index=%ld, ppCredProvCredential=%p\n", dwIndex, ppCredProvCredential);
+    VBoxCredProvVerbose(0, "VBoxCredProv::GetCredentialAt: Index=%ld, ppCredProvCredential=0x%p\n",
+                        dwIndex, ppCredProvCredential);
 
     if (!m_pCred)
@@ -487 +490 @@
     VBoxCredProvVerbose(0, "VBoxCredProv::OnCredentialsProvided\n");
 
-    if (m_pCredProvEvents != NULL)
-        m_pCredProvEvents->CredentialsChanged(m_upAdviseContext);
+    if (m_pEvents)
+        m_pEvents->CredentialsChanged(m_upAdviseContext);
 }
 

trunk/src/VBox/Additions/WINNT/VBoxCredProv/VBoxCredProvProvider.h

@@ -75 +75 @@
 
         /** Interface reference count. */
-        ULONG                                    m_cRefCount;
+        LONG                                     m_cRefCount;
         /** Our one and only credential. */
         VBoxCredProvCredential                  *m_pCred;
@@ -81 +81 @@
         VBoxCredProvPoller                      *m_pPoller;
         /** Used to tell our owner to re-enumerate credentials. */
-        ICredentialProviderEvents               *m_pCredProvEvents;
+        ICredentialProviderEvents               *m_pEvents;
         /** Used to tell our owner who we are when asking to re-enumerate credentials. */
         UINT_PTR                                 m_upAdviseContext;
         /** Saved usage scenario. */
         CREDENTIAL_PROVIDER_USAGE_SCENARIO       m_cpUsageScenario;
-        /** Flag indicating we got some credentials to work with. */
-        bool                                     m_fGotCredentials;
         /** Flag whether we need to handle remote session over Windows Remote
          *  Desktop Service. */

trunk/src/VBox/Additions/WINNT/VBoxCredProv/VBoxCredentialProvider.cpp

@@ -33 +33 @@
 *   Global Variables                                                           *
 *******************************************************************************/
-static LONG g_cDllRefCount = 0;        /* Global DLL reference count. */
-HINSTANCE g_hDllInst       = NULL;     /* Global DLL hInstance. */
+static LONG g_cDllRefCount  = 0;        /* Global DLL reference count. */
+static HINSTANCE g_hDllInst = NULL;     /* Global DLL hInstance. */
 
 
@@ -56 +56 @@
             if (RT_SUCCESS(rc))
             {
-                VBoxCredProvVerbose(0, "VBoxCredProv: v%s r%s (%s %s) loaded\n",
+                VBoxCredProvVerbose(0, "VBoxCredProv: v%s r%s (%s %s) loaded (refs=%ld)\n",
                                     RTBldCfgVersion(), RTBldCfgRevisionStr(),
-                                    __DATE__, __TIME__);
+                                    __DATE__, __TIME__, g_cDllRefCount);
             }
 
@@ -67 +67 @@
         case DLL_PROCESS_DETACH:
 
-            VbglR3Term();
+            if (!g_cDllRefCount)
+                VbglR3Term();
             break;
 
@@ -82 +83 @@
  * Increments the reference count by one. Must be released
  * with VBoxCredentialProviderRelease() when finished.
- *
- * @return  LONG                The current referecne count.
  */
-LONG VBoxCredentialProviderAcquire(void)
+void VBoxCredentialProviderAcquire(void)
 {
-    VBoxCredProvVerbose(0, "VBoxCredProv: Increasing global refcount to %ld\n",
-                        g_cDllRefCount + 1);
-    return InterlockedIncrement(&g_cDllRefCount);
+    LONG cRefCount = InterlockedIncrement(&g_cDllRefCount);
+    VBoxCredProvVerbose(0, "VBoxCredentialProviderAcquire: Increasing global refcount to %ld\n",
+                        cRefCount);
 }
 
@@ -95 +94 @@
 /**
  * Decrements the reference count by one.
- *
- * @return  LONG                The current referecne count.
  */
-LONG VBoxCredentialProviderRelease(void)
+void VBoxCredentialProviderRelease(void)
 {
-    VBoxCredProvVerbose(0, "VBoxCredProv: Decreasing global refcount to %ld\n",
-                        g_cDllRefCount - 1);
-    return InterlockedDecrement(&g_cDllRefCount);
+    LONG cRefCount = InterlockedDecrement(&g_cDllRefCount);
+    VBoxCredProvVerbose(0, "VBoxCredentialProviderRelease: Decreasing global refcount to %ld\n",
+                        cRefCount);
 }
 

trunk/src/VBox/Additions/WINNT/VBoxCredProv/VBoxCredentialProvider.h

@@ -71 +71 @@
 
 /** Prototypes. */
-LONG VBoxCredentialProviderAcquire(void);
-LONG VBoxCredentialProviderRelease(void);
+void VBoxCredentialProviderAcquire(void);
+void VBoxCredentialProviderRelease(void);
 LONG VBoxCredentialProviderRefCount(void);