archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
2 Commits
1 Branch
0 Tags
1.5 GiB
Tree: 7b07a90fc1
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '7b07a90fc1'
${ noResults }
windows-server-2003/admin/admt/plugins/mcspisag/csvcinf.cpp

426 lines
14 KiB
Raw Normal View History

commiting as it is
4 years ago
  1. // CSvcInf.cpp : Implementation of CCSvcAcctInfo
  2. #include "stdafx.h"
  3. #include "McsPISag.h"
  4. //#import "\bin\McsVarSetMin.tlb" no_namespace, named_guids
  5. //#import "\bin\DBManager.tlb" no_namespace, named_guids
  6. #import "VarSet.tlb" no_namespace, named_guids rename("property", "aproperty")
  7. #import "DBMgr.tlb" no_namespace, named_guids
  8. #include "CSvcInf.h"
  9. #include "ResStr.h"
  10. #include "ErrDct.hpp"
  12. #include <ntdsapi.h>
  13. #include <lm.h>
  14. #include "GetDcName.h"
  16. // these are needed for ISecPlugIn
  17. #include "cipher.hpp"
  18. #include "SecPI.h"
  20. #define EXCHANGE_SERVICE_NAME L"MSExchangeSA"
  21. #define SvcAcctStatus_DoNotUpdate 1
  22. #define SvcAcctStatus_NeverAllowUpdate 8
  24. TErrorDct err;
  25. /////////////////////////////////////////////////////////////////////////////
  26. // CCSvcAcctInfo
  29. typedef UINT (CALLBACK* DSBINDFUNC)(TCHAR*, TCHAR*, HANDLE*);
  30. typedef UINT (CALLBACK* DSUNBINDFUNC)(HANDLE*);
  32. typedef NTDSAPI
  33. DWORD
  34. WINAPI
  35. DSCRACKNAMES(
  36. HANDLE hDS, // in
  37. DS_NAME_FLAGS flags, // in
  38. DS_NAME_FORMAT formatOffered, // in
  39. DS_NAME_FORMAT formatDesired, // in
  40. DWORD cNames, // in
  41. const LPCWSTR *rpNames, // in
  42. PDS_NAME_RESULTW *ppResult); // out
  44. typedef NTDSAPI
  45. void
  46. WINAPI
  47. DSFREENAMERESULT(
  48. DS_NAME_RESULTW *pResult
  49. );
  51. // This method is called by the dispatcher to verify that this is a valid plug-in
  52. // Only valid plug-ins will be sent out with the agents
  53. // The purpose of this check is to make it more difficult for unauthorized parties
  54. // to use our plug-in interface, since it is currently undocumented.
  55. STDMETHODIMP CCSvcAcctInfo::Verify(/*[in,out]*/ULONG * pData,/*[in]*/ULONG size)
  56. {
  58. McsChallenge * pMcsChallenge;
  59. long lTemp1;
  60. long lTemp2;
  62. if( size == sizeof(McsChallenge) )
  63. {
  64. pMcsChallenge = (McsChallenge*)(pData);
  66. SimpleCipher((LPBYTE)pMcsChallenge,size);
  68. pMcsChallenge->MCS[0] = 'M';
  69. pMcsChallenge->MCS[1] = 'C';
  70. pMcsChallenge->MCS[2] = 'S';
  71. pMcsChallenge->MCS[3] = 0;
  74. lTemp1 = pMcsChallenge->lRand1 + pMcsChallenge->lRand2;
  75. lTemp2 = pMcsChallenge->lRand2 - pMcsChallenge->lRand1;
  76. pMcsChallenge->lRand1 = lTemp1;
  77. pMcsChallenge->lRand2 = lTemp2;
  78. pMcsChallenge->lTime += 100;
  80. SimpleCipher((LPBYTE)pMcsChallenge,size);
  81. }
  82. else
  83. return E_FAIL;
  86. return S_OK;
  87. }
  89. STDMETHODIMP CCSvcAcctInfo::GetRegisterableFiles(/* [out] */SAFEARRAY ** pArray)
  90. {
  91. SAFEARRAYBOUND bound[1] = { 1, 0 };
  92. LONG ndx[1] = { 0 };
  94. (*pArray) = SafeArrayCreate(VT_BSTR,1,bound);
  96. SafeArrayPutElement(*pArray,ndx,SysAllocString(L"McsPISag.DLL"));
  98. return S_OK;
  99. }
  101. STDMETHODIMP CCSvcAcctInfo::GetRequiredFiles(/* [out] */SAFEARRAY ** pArray)
  102. {
  103. SAFEARRAYBOUND bound[1] = { 1, 0 };
  104. LONG ndx[1] = { 0 };
  106. (*pArray) = SafeArrayCreate(VT_BSTR,1,bound);
  108. SafeArrayPutElement(*pArray,ndx,SysAllocString(L"McsPISag.DLL"));
  110. return S_OK;
  111. }
  113. STDMETHODIMP CCSvcAcctInfo::GetDescription(/* [out] */ BSTR * description)
  114. {
  115. (*description) = SysAllocString(L"");
  117. return S_OK;
  118. }
  120. STDMETHODIMP CCSvcAcctInfo::PreMigrationTask(/* [in] */IUnknown * pVarSet)
  121. {
  122. return S_OK;
  123. }
  125. STDMETHODIMP CCSvcAcctInfo::PostMigrationTask(/* [in] */IUnknown * pVarSet)
  126. {
  127. // DWORD rc = 0;
  128. IVarSetPtr pVS;
  130. pVS = pVarSet;
  132. _bstr_t log = pVS->get(GET_BSTR(DCTVS_Options_Logfile));
  134. err.LogOpen((WCHAR*)log,1);
  136. err.MsgWrite(0,DCT_MSG_MCSPISAG_STARTING);
  138. pVS->put(GET_BSTR(DCTVS_CurrentOperation),GET_BSTR(IDS_Gathering_SvcAcct));
  140. ProcessServices(pVS);
  142. pVS->put(GET_BSTR(DCTVS_CurrentOperation),L"");
  144. err.MsgWrite(0,DCT_MSG_MCSPISAG_DONE);
  146. err.LogClose();
  147. return S_OK;
  148. }
  151. STDMETHODIMP CCSvcAcctInfo::GetName(/* [out] */BSTR * name)
  152. {
  153. (*name) = SysAllocString(L"");
  155. return S_OK;
  156. }
  158. STDMETHODIMP CCSvcAcctInfo::GetResultString(/* [in] */IUnknown * pVarSet,/* [out] */ BSTR * text)
  159. {
  160. WCHAR buffer[1000] = L"";
  161. IVarSetPtr pVS;
  163. pVS = pVarSet;
  166. (*text) = SysAllocString(buffer);
  168. return S_OK;
  169. }
  171. STDMETHODIMP CCSvcAcctInfo::StoreResults(/* [in] */IUnknown * pVarSet)
  172. {
  173. IVarSetPtr pVS = pVarSet;
  174. IIManageDBPtr pDatabase;
  175. HRESULT hr;
  176. WCHAR key[200];
  177. _bstr_t service;
  178. _bstr_t account;
  179. _bstr_t computer;
  180. _bstr_t display;
  181. long ndx = 0;
  182. _bstr_t exchangeAccount;
  183. HINSTANCE hLibrary = NULL;
  184. DSCRACKNAMES * DsCrackNames = NULL;
  185. DSFREENAMERESULT * DsFreeNameResult = NULL;
  186. DSBINDFUNC DsBind = NULL;
  187. DSUNBINDFUNC DsUnBind = NULL;
  188. _bstr_t sourceDomainDns = pVS->get(GET_BSTR(DCTVS_Options_SourceDomainDns));
  189. WCHAR * atPtr = NULL;
  190. HANDLE hDs = NULL;
  192. computer = pVS->get("LocalServer");
  193. hr = pDatabase.CreateInstance(CLSID_IManageDB);
  194. if ( SUCCEEDED(hr) )
  195. {
  196. // make a pre-pass through the data
  197. do
  198. {
  199. swprintf(key,L"ServiceAccounts.%ld.Service",ndx);
  200. service = pVS->get(key);
  202. swprintf(key,L"ServiceAccounts.%ld.Account",ndx);
  203. account = pVS->get(key);
  205. // make sure the account names are not in UPN format
  206. if ( NULL == wcschr((WCHAR*)account,L'\\') )
  207. {
  208. if (! hDs )
  209. {
  210. if (! hLibrary )
  211. {
  212. hLibrary = LoadLibrary(L"NTDSAPI.DLL");
  213. }
  214. if ( hLibrary )
  215. {
  216. DsBind = (DSBINDFUNC)GetProcAddress(hLibrary,"DsBindW");
  217. DsUnBind = (DSUNBINDFUNC)GetProcAddress(hLibrary,"DsUnBindW");
  218. DsCrackNames = (DSCRACKNAMES *)GetProcAddress(hLibrary,"DsCrackNamesW");
  219. DsFreeNameResult = (DSFREENAMERESULT *)GetProcAddress(hLibrary,"DsFreeNameResultW");
  220. }
  222. if ( DsBind && DsUnBind && DsCrackNames && DsFreeNameResult)
  223. {
  224. hr = (*DsBind)(NULL,(WCHAR*)sourceDomainDns,&hDs);
  225. if ( hr )
  226. {
  227. hDs = NULL;
  228. }
  229. }
  230. }
  231. if ( hDs )
  232. {
  233. PDS_NAME_RESULT pNamesOut = NULL;
  234. WCHAR * pNamesIn[1];
  236. pNamesIn[0] = (WCHAR*)account;
  237. hr = (*DsCrackNames)(hDs,DS_NAME_NO_FLAGS,DS_USER_PRINCIPAL_NAME,DS_NT4_ACCOUNT_NAME,1,pNamesIn,&pNamesOut);
  238. (*DsUnBind)(&hDs);
  239. hDs = NULL;
  240. if ( !hr )
  241. {
  242. if ( pNamesOut->rItems[0].status == DS_NAME_NO_ERROR )
  243. {
  244. account = pNamesOut->rItems[0].pName;
  245. pVS->put(key,account);
  246. }
  247. //if from another domain try connecting to that domain's DC and
  248. //retry DSCrackNames
  249. else if ( pNamesOut->rItems[0].status == DS_NAME_ERROR_DOMAIN_ONLY )
  250. {
  251. _bstr_t dc;
  253. DWORD dwError = GetAnyDcName4(pNamesOut->rItems[0].pDomain, dc);
  255. if (dwError == ERROR_SUCCESS)
  256. {
  257. //bind to that domain DC
  258. hr = (*DsBind)(dc,NULL,&hDs);
  259. if ( !hr )
  260. {
  261. (*DsFreeNameResult)(pNamesOut);//release the old info
  262. pNamesOut = NULL;
  263. //retry DSCrackNames again
  264. hr = (*DsCrackNames)(hDs,DS_NAME_NO_FLAGS,DS_USER_PRINCIPAL_NAME,DS_NT4_ACCOUNT_NAME,1,pNamesIn,&pNamesOut);
  265. if ( !hr )
  266. {
  267. if ( pNamesOut->rItems[0].status == DS_NAME_NO_ERROR )
  268. {
  269. account = pNamesOut->rItems[0].pName;
  270. pVS->put(key,account);
  271. }
  272. }
  273. (*DsUnBind)(&hDs);
  274. hDs = NULL;
  275. }
  276. }
  277. }
  278. if (pNamesOut)
  279. (*DsFreeNameResult)(pNamesOut);
  280. }
  281. }
  282. }
  283. // also, look for the exchange server service account
  284. if ( !UStrICmp(service,EXCHANGE_SERVICE_NAME) )
  285. {
  286. exchangeAccount = account;
  287. }
  288. ndx++;
  289. } while ( service.length() );
  291. ndx = 0;
  292. WCHAR serverFilter[300];
  294. // clear any old entries from the table for this computer
  295. swprintf(serverFilter,L"System = '%ls'",(WCHAR*)computer);
  296. _variant_t Filter = serverFilter;
  297. hr = pDatabase->raw_ClearTable(SysAllocString(L"ServiceAccounts"), Filter);
  298. do
  299. {
  300. swprintf(key,L"ServiceAccounts.%ld.Service",ndx);
  301. service = pVS->get(key);
  302. swprintf(key,L"ServiceAccounts.%ld.DisplayName",ndx);
  303. display = pVS->get(key);
  304. swprintf(key,L"ServiceAccounts.%ld.Account",ndx);
  305. account = pVS->get(key);
  306. if ( service.length() && account.length() )
  307. {
  308. hr = pDatabase->raw_SetServiceAccount(computer,service,display,account);
  309. if ( SUCCEEDED(hr) && !UStrICmp((WCHAR*)account,(WCHAR*)exchangeAccount) )
  310. {
  311. // mark this account to be excluded from the processing
  312. hr = pDatabase->raw_SetServiceAcctEntryStatus(computer,service,account,SvcAcctStatus_NeverAllowUpdate);
  313. }
  314. }
  315. ndx++;
  316. } while ( service.length() );
  317. }
  318. if ( hLibrary )
  319. {
  320. FreeLibrary(hLibrary);
  321. }
  322. return S_OK;
  323. }
  325. STDMETHODIMP CCSvcAcctInfo::ConfigureSettings(/*[in]*/IUnknown * pVarSet)
  326. {
  327. IVarSetPtr pVS = pVarSet;
  329. MessageBox(NULL,L"This is a test",L"McsPISag PlugIn",MB_OK);
  331. return S_OK;
  332. }
  334. void CCSvcAcctInfo::ProcessServices(IVarSet * pVarSet)
  335. {
  336. // Connect to the SCM on the local computer
  337. SC_HANDLE pScm = OpenSCManager(NULL, NULL, SC_MANAGER_ALL_ACCESS );
  338. DWORD rc = 0;
  339. WCHAR domain[200];
  340. WKSTA_INFO_100 * info;
  342. // Get the name of the domain that this computer is in, so we can resolve any accounts that are
  343. // specified as .\Account to DOMAIN\account format
  345. rc = NetWkstaGetInfo(NULL,100,(BYTE**)&info);
  346. if ( ! rc )
  347. {
  348. UStrCpy(domain,info->wki100_langroup);
  349. NetApiBufferFree(info);
  350. }
  351. else
  352. {
  353. // if we can't get the domain name, just leave the .
  354. UStrCpy(domain,L".");
  355. }
  356. if ( pScm )
  357. {
  358. // Enumerate the services on the computer
  359. ENUM_SERVICE_STATUS servStatus[1000];
  360. DWORD cbBufSize = (sizeof servStatus);
  361. DWORD cbBytesNeeded = 0;
  362. DWORD nReturned = 0;
  363. DWORD hResume = 0;
  364. WCHAR string[1000];
  365. long count = 0;
  367. if (! EnumServicesStatus(pScm,SERVICE_WIN32,SERVICE_STATE_ALL,servStatus,cbBufSize,&cbBytesNeeded,&nReturned,&hResume) )
  368. {
  369. rc = GetLastError();
  370. err.SysMsgWrite(ErrE,rc,DCT_MSG_SERVICE_ENUM_FAILED_D,rc);
  371. }
  372. else
  373. {
  374. rc = 0;
  375. }
  377. if ( rc == ERROR_SUCCESS || rc == ERROR_MORE_DATA )
  378. {
  380. for ( UINT i = 0 ; i < nReturned ; i++ )
  381. {
  382. SC_HANDLE pService = OpenService(pScm,servStatus[i].lpServiceName,SERVICE_ALL_ACCESS );
  383. BYTE buf[3000];
  384. QUERY_SERVICE_CONFIG * pConfig = (QUERY_SERVICE_CONFIG *)buf;
  385. // BOOL bIncluded = FALSE;
  386. DWORD lenNeeded = 0;
  389. if ( pService )
  390. {
  391. // get the information about this service
  392. if ( QueryServiceConfig(pService,pConfig,sizeof buf, &lenNeeded) )
  393. {
  394. err.MsgWrite(0,DCT_MSG_SERVICE_USES_ACCOUNT_SS,servStatus[i].lpServiceName,pConfig->lpServiceStartName);
  395. // add the account to the list if it is not using LocalSystem or NT Authority account
  396. // or local accounts
  397. if ((UStrICmp(pConfig->lpServiceStartName,L"LocalSystem")) &&
  398. (_wcsnicmp(pConfig->lpServiceStartName, L"NT Authority\\", wcslen(L"NT Authority\\"))) &&
  399. (_wcsnicmp(pConfig->lpServiceStartName, L".\\", wcslen(L".\\"))))
  400. {
  401. swprintf(string,L"ServiceAccounts.%ld.Service",count);
  402. pVarSet->put(string,servStatus[i].lpServiceName);
  403. swprintf(string,L"ServiceAccounts.%ld.DisplayName",count);
  404. pVarSet->put(string,servStatus[i].lpDisplayName);
  405. swprintf(string,L"ServiceAccounts.%ld.Account",count);
  406. pVarSet->put(string,pConfig->lpServiceStartName);
  407. count++;
  408. }
  410. }
  411. CloseServiceHandle(pService);
  412. }
  413. else
  414. {
  415. err.SysMsgWrite(ErrE,GetLastError(),DCT_MSG_OPEN_SERVICE_FAILED_SD,servStatus[i].lpServiceName,rc);
  416. }
  417. }
  418. }
  419. CloseServiceHandle(pScm);
  420. }
  421. else
  422. {
  423. rc = GetLastError();
  424. err.SysMsgWrite(ErrE,rc,DCT_MSG_SCM_OPEN_FAILED_D,rc);
  425. }
  426. }