archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
4 Commits
1 Branch
0 Tags
1.5 GiB
Tree: 5c6fe3db62
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '5c6fe3db62'
${ noResults }
windows-server-2003/ds/security/cryptoapi/test/passrec/passrec.c

348 lines
8.3 KiB
Raw Normal View History

commiting as it is
4 years ago
  1. //
  2. // keymigrt.c
  3. //
  4. // Copyright (c) Microsoft Corp, 2000
  5. //
  6. //
  7. #include <nt.h>
  8. #include <ntrtl.h>
  9. #include <nturtl.h>
  10. #include <windows.h>
  11. #include <rpc.h>
  13. #include <shlobj.h>
  15. #include <wincrypt.h>
  16. #define SECURITY_WIN32
  17. #include <security.h>
  18. #include <secext.h>
  19. #include "passrec.h"
  21. #include <stdio.h>
  25. extern BOOL GetUserSid(HANDLE hClientToken,
  26. PSID* ppSid,
  27. DWORD* lpcbSid);
  29. extern DWORD GetLocalSystemToken(HANDLE* phRet);
  32. void Usage();
  35. int __cdecl wmain(int cArg, wchar_t *rgszArg[])
  36. {
  38. DWORD dwBehavior = 0;
  39. DWORD dwError = ERROR_SUCCESS;
  40. HCRYPTPROV hProv = 0;
  41. HANDLE hToken = NULL;
  42. int i;
  44. LPWSTR wszFilename = NULL;
  46. LPWSTR wszPassword = NULL;
  48. BOOL fGenerate = FALSE;
  50. PSID pCurrentSid = NULL;
  51. DWORD cbCurrentSid = 0;
  53. UNICODE_STRING UserName;
  54. UNICODE_STRING Password;
  56. WCHAR UserNameBuffer[MAX_PATH];
  58. PBYTE pbRecoveryPrivate = NULL;
  60. DWORD cbRecoveryPrivate = 0;
  61. HANDLE hPrivate = INVALID_HANDLE_VALUE;
  65. if(cArg < 2)
  66. {
  67. Usage();
  68. }
  70. // Parse command line
  72. for(i=1; i < cArg; i++)
  73. {
  74. LPWSTR szCurrentArg = rgszArg[i];
  76. if((*szCurrentArg != L'-') &&
  77. (*szCurrentArg != L'/'))
  78. {
  79. Usage();
  80. goto error;
  81. }
  82. szCurrentArg++;
  84. while(*szCurrentArg)
  85. {
  87. switch(*szCurrentArg++)
  88. {
  89. case L'n':
  90. case L'N':
  91. if(cArg < i+2)
  92. {
  93. Usage();
  94. goto error;
  95. }
  96. if(*szCurrentArg)
  97. {
  98. if(cArg < i+1)
  99. {
  100. Usage();
  101. goto error;
  102. }
  104. wszFilename = szCurrentArg;
  105. }
  106. else
  107. {
  108. if(cArg < i+2)
  109. {
  110. Usage();
  111. goto error;
  112. }
  113. i++;
  114. wszFilename = rgszArg[i];
  115. }
  116. i++;
  117. wszPassword = rgszArg[i];
  118. fGenerate = TRUE;
  119. break;
  121. case L'r':
  122. case L'R':
  123. if(cArg < i+1)
  124. {
  125. Usage();
  126. goto error;
  127. }
  128. if(*szCurrentArg)
  129. {
  130. wszFilename = szCurrentArg;
  131. }
  132. else
  133. {
  134. if(cArg < i+1)
  135. {
  136. Usage();
  137. goto error;
  138. }
  139. i++;
  140. wszFilename = rgszArg[i];
  141. }
  142. break;
  144. default:
  145. Usage();
  146. goto error;
  147. }
  150. }
  151. }
  154. if(fGenerate)
  155. {
  158. ULONG Length = MAX_PATH;
  161. Password.Buffer = wszPassword;
  162. Password.Length = wcslen(wszPassword)*sizeof(WCHAR);
  163. Password.MaximumLength = Password.Length + sizeof(WCHAR);
  165. UserName.Buffer = UserNameBuffer;
  166. UserName.Length = MAX_PATH;
  167. UserName.MaximumLength = MAX_PATH*sizeof(WCHAR);
  169. if(!GetUserNameW(UserNameBuffer, &Length))
  170. {
  171. dwError = GetLastError();
  172. printf("Could not get user name:%lx\n", dwError);
  173. goto error;
  174. }
  175. UserName.Length = (USHORT)Length*sizeof(WCHAR);
  178. if(!GetUserSid(NULL,
  179. &pCurrentSid,
  180. &cbCurrentSid))
  181. {
  182. printf("Could not get user sid:%lx\n", dwError);
  183. dwError = GetLastError();
  184. goto error;
  186. }
  187. dwError = GetLocalSystemToken(&hToken);
  188. if(ERROR_SUCCESS != dwError)
  189. {
  190. printf("Could not retrieve local system token:%lx\n", dwError);
  191. goto error;
  192. }
  194. if(!ImpersonateLoggedOnUser(hToken))
  195. {
  196. dwError = GetLastError();
  197. printf("Could not impersonate local system:%lx\n", dwError);
  198. goto error;
  200. }
  203. dwError = PRGenerateRecoveryKey(
  204. pCurrentSid,
  205. &UserName,
  206. &Password,
  207. &pbRecoveryPrivate,
  208. &cbRecoveryPrivate);
  210. RevertToSelf();
  212. if(ERROR_SUCCESS != dwError)
  213. {
  214. printf("Could not generate recovery key:%lx\n", dwError);
  215. goto error;
  216. }
  219. hPrivate = CreateFileW(wszFilename,
  220. GENERIC_WRITE,
  221. 0,
  222. NULL,
  223. CREATE_ALWAYS,
  224. 0,
  225. NULL);
  226. if(INVALID_HANDLE_VALUE == hPrivate)
  227. {
  228. dwError = GetLastError();
  229. printf("Could not open recovery key file:%lx\n", dwError);
  230. goto error;
  231. }
  233. if(!WriteFile(hPrivate, pbRecoveryPrivate, cbRecoveryPrivate, &cbRecoveryPrivate, NULL))
  234. {
  235. dwError = GetLastError();
  236. printf("Could not write recovery key file:%lx\n", dwError);
  237. goto error;
  238. }
  241. }
  242. else
  243. {
  245. if(!ImpersonateSelf(SecurityImpersonation))
  246. {
  247. dwError = GetLastError();
  248. printf("Could not impersonate self:%lx\n", dwError);
  249. goto error;
  251. }
  253. hPrivate = CreateFileW(wszFilename,
  254. GENERIC_READ,
  255. 0,
  256. NULL,
  257. OPEN_EXISTING,
  258. 0,
  259. NULL);
  260. if(INVALID_HANDLE_VALUE == hPrivate)
  261. {
  262. dwError = GetLastError();
  263. printf("Could not open recovery key file:%lx\n", dwError);
  264. goto error;
  265. }
  267. cbRecoveryPrivate = GetFileSize(hPrivate, NULL);
  269. if(-1 == cbRecoveryPrivate)
  270. {
  271. dwError = GetLastError();
  272. printf("Could not retrieve recovery key file size:%lx\n", dwError);
  273. goto error;
  275. }
  277. pbRecoveryPrivate = (PBYTE)LocalAlloc(LMEM_FIXED, cbRecoveryPrivate);
  279. if(NULL == pbRecoveryPrivate)
  280. {
  281. dwError = ERROR_NOT_ENOUGH_MEMORY;
  282. printf("Memory allocation failure:%lx\n", dwError);
  283. goto error;
  284. }
  286. if(!ReadFile(hPrivate, pbRecoveryPrivate, cbRecoveryPrivate, &cbRecoveryPrivate, NULL))
  287. {
  288. dwError = GetLastError();
  289. printf("Could not read recovery key file:%lx\n", dwError);
  290. goto error;
  291. }
  294. dwError = PRRecoverPassword(
  295. pbRecoveryPrivate,
  296. cbRecoveryPrivate,
  297. &Password);
  299. if(ERROR_SUCCESS == dwError)
  300. {
  301. printf("Recovered Password: %S\n", Password.Buffer);
  302. ZeroMemory(Password.Buffer, Password.MaximumLength);
  303. LocalFree(Password.Buffer);
  304. }
  306. RevertToSelf();
  307. }
  310. error:
  312. if(hToken)
  313. {
  314. CloseHandle(hToken);
  315. }
  317. if(hPrivate != INVALID_HANDLE_VALUE)
  318. {
  319. CloseHandle(hPrivate);
  320. }
  321. if(pbRecoveryPrivate)
  322. {
  323. ZeroMemory(pbRecoveryPrivate, cbRecoveryPrivate);
  325. LocalFree(pbRecoveryPrivate);
  326. }
  328. if(pCurrentSid)
  329. {
  330. LocalFree(pCurrentSid);
  331. }
  335. return (ERROR_SUCCESS == dwError)?0:-1;
  337. }
  340. void Usage()
  341. {
  342. printf("Password Recovery Utility\n");
  343. printf("Usage: passrec -n filename password\n");
  344. printf(" passrec -r filename \n\n");
  345. }