archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
2 Commits
1 Branch
0 Tags
1.5 GiB
Tree: 7b07a90fc1
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '7b07a90fc1'
${ noResults }
windows-server-2003/admin/pchealth/sr/rstrcore/password.cpp

774 lines
22 KiB
Raw Normal View History

commiting as it is
4 years ago
  1. /******************************************************************************
  2. *
  3. * Copyright (c) 2000 Microsoft Corporation
  4. *
  5. * Module Name:
  6. * srpasswd.cpp
  7. *
  8. * Abstract:
  9. * password filter routines to restore user's latest passwords
  10. *
  11. * Revision History:
  12. * Henry Lee (henrylee) 06/27/2000 created
  13. *
  14. *****************************************************************************/
  16. #include "stdwin.h"
  17. #include <ntlsa.h>
  18. #include <ntsam.h>
  20. extern "C"
  21. {
  22. #include <ntsamp.h>
  23. #include <recovery.h>
  24. }
  26. #include "rstrcore.h"
  27. extern CSRClientLoader g_CSRClientLoader;
  29. //+---------------------------------------------------------------------------
  30. //
  31. // Function: RegisterNotificationDLL
  32. //
  33. // Synopsis: registers/unregisters this DLL
  34. //
  35. // Arguments: [fRegister] -- TRUE to register, FALSE to unregister
  36. // [hKeyLM] -- key for HKEY_LOCAL_MACHINE or System
  37. //
  38. // History: 12-Apr-2000 HenryLee Created
  39. //
  40. //----------------------------------------------------------------------------
  42. DWORD RegisterNotificationDLL (HKEY hKeyLM, BOOL fRegister)
  43. {
  44. HKEY hKey = NULL;
  45. DWORD dwErr = ERROR_SUCCESS;
  46. ULONG ulType;
  47. ULONG ulSize = MAX_PATH * sizeof(WCHAR);
  48. WCHAR wcsBuffer[MAX_PATH];
  49. WCHAR wcsFileName[MAX_PATH];
  51. GetModuleFileNameW (g_hInst, wcsFileName, MAX_PATH);
  52. const ULONG ccFileName = lstrlenW (wcsFileName) + 1;
  54. if (hKeyLM == HKEY_LOCAL_MACHINE)
  55. {
  56. lstrcpy (wcsBuffer, L"System\\CurrentControlSet\\Control\\Lsa");
  57. }
  58. else
  59. {
  60. lstrcpy(wcsBuffer, L"CurrentControlSet\\Control\\Lsa");
  61. ChangeCCS(hKeyLM, wcsBuffer);
  62. }
  64. dwErr = RegOpenKeyExW (hKeyLM, wcsBuffer,
  65. 0, KEY_READ | KEY_WRITE, &hKey);
  67. if (dwErr != ERROR_SUCCESS)
  68. goto Err;
  70. dwErr = RegQueryValueEx (hKey, L"Notification Packages",
  71. 0, &ulType, (BYTE *) wcsBuffer, &ulSize);
  73. if (dwErr != ERROR_SUCCESS)
  74. goto Err;
  76. for (ULONG i=0; i < ulSize/sizeof(WCHAR); i += lstrlenW(&wcsBuffer[i])+1)
  77. {
  78. if (fRegister) // append at end
  79. {
  80. if (lstrcmpi (&wcsBuffer[i], wcsFileName) == 0)
  81. goto Err; // it's already registered
  83. if (wcsBuffer[i] == L'\0') // end of list
  84. {
  85. lstrcpy (&wcsBuffer[i], wcsFileName);
  86. wcsBuffer[ i + ccFileName ] = L'\0'; // add double NULL
  87. ulSize += ccFileName * sizeof(WCHAR);
  88. break;
  89. }
  90. }
  91. else // remove from the end
  92. {
  93. if (lstrcmpi (&wcsBuffer[i], wcsFileName) == 0)
  94. {
  95. wcsBuffer[i] = L'\0';
  96. ulSize -= ccFileName * sizeof(WCHAR);
  97. break;
  98. }
  99. }
  100. }
  102. dwErr = RegSetValueExW (hKey, L"Notification Packages",
  103. 0, ulType, (BYTE *) wcsBuffer, ulSize);
  104. Err:
  105. if (hKey != NULL)
  106. RegCloseKey (hKey);
  108. return dwErr;
  109. }
  111. //+---------------------------------------------------------------------------
  112. //
  113. // Function: GetDomainId
  114. //
  115. // Synopsis: stolen from setup, get the local domain ID
  116. //
  117. // Arguments: [ServerHandle] -- handle to the local SAM server
  118. // [pDomainId] -- output domain ID
  119. //
  120. // History: 12-Apr-2000 HenryLee Created
  121. //
  122. //----------------------------------------------------------------------------
  124. NTSTATUS GetDomainId (SAM_HANDLE ServerHandle, PSID * pDomainId )
  125. {
  126. NTSTATUS status = STATUS_SUCCESS;
  127. SAM_ENUMERATE_HANDLE EnumContext;
  128. PSAM_RID_ENUMERATION EnumBuffer = NULL;
  129. DWORD CountReturned = 0;
  130. PSID LocalDomainId = NULL;
  131. DWORD LocalBuiltinDomainSid[sizeof(SID) / sizeof(DWORD) +
  132. SID_MAX_SUB_AUTHORITIES];
  133. SID_IDENTIFIER_AUTHORITY BuiltinAuthority = SECURITY_NT_AUTHORITY;
  134. BOOL bExit = FALSE;
  136. //
  137. // Compute the builtin domain sid.
  138. //
  139. RtlInitializeSid((PSID) LocalBuiltinDomainSid, &BuiltinAuthority, 1);
  140. *(RtlSubAuthoritySid((PSID)LocalBuiltinDomainSid, 0)) = SECURITY_BUILTIN_DOMAIN_RID;
  142. //
  143. // Loop getting the list of domain ids from SAM
  144. //
  145. EnumContext = 0;
  146. do
  147. {
  148. //
  149. // Get several domain names.
  150. //
  151. status = SamEnumerateDomainsInSamServer (
  152. ServerHandle,
  153. &EnumContext,
  154. (PVOID *) &EnumBuffer,
  155. 8192,
  156. &CountReturned );
  158. if (!NT_SUCCESS (status))
  159. {
  160. goto exit;
  161. }
  163. if (status != STATUS_MORE_ENTRIES)
  164. {
  165. bExit = TRUE;
  166. }
  168. //
  169. // Lookup the domain ids for the domains
  170. //
  171. for (ULONG i = 0; i < CountReturned; i++)
  172. {
  173. //
  174. // Free the sid from the previous iteration.
  175. //
  176. if (LocalDomainId != NULL)
  177. {
  178. SamFreeMemory (LocalDomainId);
  179. LocalDomainId = NULL;
  180. }
  182. //
  183. // Lookup the domain id
  184. //
  185. status = SamLookupDomainInSamServer (
  186. ServerHandle,
  187. &EnumBuffer[i].Name,
  188. &LocalDomainId );
  190. if (!NT_SUCCESS (status))
  191. {
  192. goto exit;
  193. }
  195. if (RtlEqualSid ((PSID)LocalBuiltinDomainSid, LocalDomainId))
  196. {
  197. continue;
  198. }
  200. *pDomainId = LocalDomainId;
  201. LocalDomainId = NULL;
  202. status = STATUS_SUCCESS;
  203. goto exit;
  204. }
  206. SamFreeMemory(EnumBuffer);
  207. EnumBuffer = NULL;
  208. }
  209. while (!bExit);
  211. status = STATUS_NO_SUCH_DOMAIN;
  213. exit:
  214. if (EnumBuffer != NULL)
  215. SamFreeMemory(EnumBuffer);
  217. return status;
  218. }
  220. //+---------------------------------------------------------------------------
  221. //
  222. // Function: ForAllUsers
  223. //
  224. // Synopsis: iterate password changing for all local users
  225. //
  226. // Arguments: [hSam] -- handle to open SAM hive
  227. // [hSecurity] -- handle to open SECURITY hive
  228. // [hSystem] -- handle to open SYSTEM hive
  229. //
  230. // History: 12-Apr-2000 HenryLee Created
  231. //
  232. //----------------------------------------------------------------------------
  234. NTSTATUS ForAllUsers (HKEY hSam, HKEY hSecurity, HKEY hSystem)
  235. {
  236. NTSTATUS nts = STATUS_SUCCESS;
  237. NTSTATUS ntsEnum = STATUS_SUCCESS;
  238. BOOLEAN bPresent;
  239. BOOLEAN bNonNull;
  240. SAM_HANDLE ServerHandle = NULL;
  241. SAM_HANDLE DomainHandle = NULL;
  242. SAM_HANDLE UserHandle;
  243. SAM_ENUMERATE_HANDLE EnumerationContext = NULL;
  244. SAM_RID_ENUMERATION *SamRidEnumeration;
  245. ULONG CountOfEntries;
  246. ULONG UserRid;
  247. UNICODE_STRING us;
  248. PSID LocalDomainId = NULL;
  249. USER_INTERNAL1_INFORMATION UserPasswordInfo;
  251. RtlInitUnicodeString (&us, L""); // this machine
  252. nts = SamConnect (&us, &ServerHandle,
  253. SAM_SERVER_CONNECT | SAM_SERVER_LOOKUP_DOMAIN |
  254. SAM_SERVER_ENUMERATE_DOMAINS,
  255. NULL);
  257. if (!NT_SUCCESS(nts))
  258. goto Err;
  260. nts = GetDomainId (ServerHandle, &LocalDomainId);
  262. if (!NT_SUCCESS(nts))
  263. goto Err;
  265. nts = SamOpenDomain( ServerHandle,
  266. DOMAIN_READ | DOMAIN_LIST_ACCOUNTS | DOMAIN_LOOKUP |
  267. DOMAIN_READ_PASSWORD_PARAMETERS,
  268. LocalDomainId,
  269. &DomainHandle );
  271. if (!NT_SUCCESS(nts))
  272. goto Err;
  274. do
  275. {
  276. ntsEnum = nts = SamEnumerateUsersInDomain (
  277. DomainHandle,
  278. &EnumerationContext,
  279. 0,
  280. (PVOID *) &SamRidEnumeration,
  281. 0,
  282. &CountOfEntries);
  284. if (nts != STATUS_MORE_ENTRIES && !NT_SUCCESS(nts))
  285. {
  286. goto Err;
  287. }
  289. for (UINT i=0; i < CountOfEntries; i++)
  290. {
  291. ULONG UserRid = SamRidEnumeration[i].RelativeId;
  293. nts = SamRetrieveOwfPasswordUser( UserRid,
  294. hSecurity,
  295. hSam,
  296. hSystem,
  297. NULL, /* boot key not supported */
  298. 0, /* boot key not supported */
  299. &UserPasswordInfo.NtOwfPassword,
  300. &bPresent,
  301. &bNonNull);
  303. if (!NT_SUCCESS(nts))
  304. continue;
  306. nts = SamOpenUser (DomainHandle,
  307. USER_READ_ACCOUNT | USER_WRITE_ACCOUNT |
  308. USER_CHANGE_PASSWORD |
  309. USER_FORCE_PASSWORD_CHANGE,
  310. UserRid,
  311. &UserHandle);
  313. if (NT_SUCCESS(nts))
  314. {
  315. UserPasswordInfo.NtPasswordPresent = bPresent;
  316. UserPasswordInfo.LmPasswordPresent = FALSE;
  317. UserPasswordInfo.PasswordExpired = FALSE;
  319. nts = SamSetInformationUser(UserHandle,
  320. UserInternal1Information,
  321. &UserPasswordInfo);
  323. SamCloseHandle (UserHandle);
  324. }
  325. }
  327. SamFreeMemory (SamRidEnumeration);
  328. }
  329. while (ntsEnum == STATUS_MORE_ENTRIES);
  332. Err:
  333. if (ServerHandle != NULL)
  334. SamCloseHandle (ServerHandle);
  336. if (DomainHandle != NULL)
  337. SamCloseHandle (DomainHandle);
  339. if (LocalDomainId != NULL)
  340. SamFreeMemory (LocalDomainId);
  342. return nts;
  343. }
  345. //+---------------------------------------------------------------------------
  346. //
  347. // Function: RestoreLsaSecrets
  348. //
  349. // Synopsis: restore machine account and autologon passwords
  350. //
  351. // Arguments:
  352. //
  353. // History: 12-Apr-2000 HenryLee Created
  354. //
  355. //----------------------------------------------------------------------------
  357. DWORD RestoreLsaSecrets ()
  358. {
  359. HKEY hKey = NULL;
  360. LSA_OBJECT_ATTRIBUTES loa;
  361. LSA_HANDLE hLsa = NULL;
  362. DWORD dwErr = ERROR_SUCCESS;
  363. ULONG ulSize = 0;
  364. ULONG ulType = 0;
  365. WCHAR wcsBuffer [MAX_PATH];
  367. loa.Length = sizeof(LSA_OBJECT_ATTRIBUTES);
  368. loa.RootDirectory = NULL;
  369. loa.ObjectName = NULL;
  370. loa.Attributes = 0;
  371. loa.SecurityDescriptor = NULL;
  372. loa.SecurityQualityOfService = NULL;
  374. if (LSA_SUCCESS (LsaOpenPolicy(NULL, &loa,
  375. POLICY_VIEW_LOCAL_INFORMATION, &hLsa)))
  376. {
  377. dwErr = RegOpenKeyExW (HKEY_LOCAL_MACHINE, s_cszSRRegKey,
  378. 0, KEY_READ | KEY_WRITE, &hKey);
  380. if (dwErr != ERROR_SUCCESS)
  381. goto Err;
  383. ulSize = MAX_PATH * sizeof(WCHAR);
  384. if (ERROR_SUCCESS == RegQueryValueEx (hKey, s_cszMachineSecret,
  385. 0, &ulType, (BYTE *) wcsBuffer, &ulSize))
  386. {
  387. wcsBuffer [ulSize / 2] = L'\0';
  388. dwErr = SetLsaSecret (hLsa, s_cszMachineSecret, wcsBuffer);
  389. if (ERROR_SUCCESS != dwErr)
  390. goto Err;
  392. RegDeleteValueW (hKey, s_cszMachineSecret);
  393. }
  395. ulSize = MAX_PATH * sizeof(WCHAR);
  396. if (ERROR_SUCCESS == RegQueryValueEx (hKey, s_cszAutologonSecret,
  397. 0, &ulType, (BYTE *) wcsBuffer, &ulSize))
  398. {
  399. wcsBuffer [ulSize / 2] = L'\0';
  400. dwErr = SetLsaSecret (hLsa, s_cszAutologonSecret, wcsBuffer);
  401. if (ERROR_SUCCESS != dwErr)
  402. goto Err;
  404. RegDeleteValueW (hKey, s_cszAutologonSecret);
  405. }
  406. }
  407. Err:
  408. if (hKey != NULL)
  409. RegCloseKey (hKey);
  411. return dwErr;
  412. }
  414. //+---------------------------------------------------------------------------
  415. //
  416. // Function: RestoreRIDs
  417. //
  418. // Synopsis: restore next availble RID and password
  419. //
  420. // Arguments:
  421. //
  422. // History: 12-Apr-2000 HenryLee Created
  423. //
  424. //----------------------------------------------------------------------------
  426. DWORD RestoreRIDs (WCHAR *pszSamPath)
  427. {
  428. HKEY hKeySam = NULL;
  429. DWORD dwErr = ERROR_SUCCESS;
  430. ULONG ulNextRid = 0;
  431. ULONG ulOldRid = 0;
  433. TENTER("RestoreRIDs");
  435. dwErr = RegLoadKeyW (HKEY_LOCAL_MACHINE, s_cszRestoreSAMHiveName,
  436. pszSamPath);
  437. if (dwErr != ERROR_SUCCESS)
  438. {
  439. trace(0, "! RegLoadKeyW : %ld", dwErr);
  440. goto Err;
  441. }
  443. dwErr = RegOpenKeyW (HKEY_LOCAL_MACHINE, s_cszSamHiveName, &hKeySam);
  444. if (dwErr != ERROR_SUCCESS)
  445. {
  446. trace(0, "! RegOpenKeyW on %S: %ld", s_cszSamHiveName, dwErr);
  447. goto Err;
  448. }
  450. dwErr = RtlNtStatusToDosError(SamGetNextAvailableRid (hKeySam, &ulNextRid));
  451. if (dwErr != ERROR_SUCCESS)
  452. {
  453. trace(0, "! SamGetNextAvailableRid : %ld", dwErr);
  454. goto Err;
  455. }
  457. RegCloseKey (hKeySam);
  458. hKeySam = NULL;
  460. dwErr = RegOpenKeyW (HKEY_LOCAL_MACHINE, s_cszRestoreSAMHiveName, &hKeySam);
  461. if (dwErr != ERROR_SUCCESS)
  462. {
  463. trace(0, "! RegOpenKeyW on %S: %ld", s_cszRestoreSAMHiveName, dwErr);
  464. goto Err;
  465. }
  467. // as an optimization we don't set the RID if it didn't change
  468. if (NT_SUCCESS(SamGetNextAvailableRid (hKeySam, &ulOldRid)) &&
  469. ulNextRid > ulOldRid)
  470. {
  471. dwErr = RtlNtStatusToDosError(SamSetNextAvailableRid (hKeySam,
  472. ulNextRid));
  473. if (dwErr != ERROR_SUCCESS)
  474. {
  475. trace(0, "! SamSetNextAvailableRid : %ld", dwErr);
  476. }
  477. }
  479. Err:
  480. if (hKeySam != NULL)
  481. {
  482. RegCloseKey (hKeySam);
  483. }
  484. RegUnLoadKeyW (HKEY_LOCAL_MACHINE, s_cszRestoreSAMHiveName);
  486. TLEAVE();
  487. return dwErr;
  488. }
  490. DWORD RestorePasswords ()
  491. {
  492. HKEY hKeySam = NULL, hKeySecurity = NULL, hKeySystem = NULL;
  493. DWORD dwErr = ERROR_SUCCESS;
  494. WCHAR wcsSystem [MAX_PATH];
  495. WCHAR wcsPath [MAX_PATH];
  496. BOOLEAN OldPriv;
  497. CRestorePoint rp;
  498. DWORD dwTemp;
  500. InitAsyncTrace();
  502. TENTER("RestorePasswords");
  504. // Attempt to get restore privilege
  505. dwErr = RtlNtStatusToDosError (RtlAdjustPrivilege(SE_RESTORE_PRIVILEGE,
  506. TRUE,
  507. FALSE,
  508. &OldPriv));
  510. if (dwErr != ERROR_SUCCESS)
  511. {
  512. trace(0, "! RtlAdjustPrivilege : %ld", dwErr);
  513. goto Err0;
  514. }
  516. if (FALSE == GetSystemDrive (wcsSystem))
  517. {
  518. dwErr = GetLastError();
  519. trace(0, "! GetSystemDrive : %ld", dwErr);
  520. goto Err;
  521. }
  523. dwErr = GetCurrentRestorePoint(rp);
  524. if (dwErr != ERROR_SUCCESS)
  525. {
  526. trace(0, "! GetCurrentRestorePoint : %ld", dwErr);
  527. goto Err;
  528. }
  530. MakeRestorePath (wcsPath, wcsSystem, rp.GetDir());
  531. lstrcatW (wcsPath, SNAPSHOT_DIR_NAME);
  532. lstrcatW (wcsPath, L"\\");
  533. lstrcatW (wcsPath, s_cszHKLMFilePrefix);
  534. lstrcatW (wcsPath, s_cszSamHiveName);
  536. dwErr = RegLoadKeyW (HKEY_LOCAL_MACHINE, s_cszRestoreSAMHiveName, wcsPath);
  537. if (dwErr != ERROR_SUCCESS)
  538. {
  539. trace(0, "! RegLoadKeyW on %S: %ld", s_cszRestoreSAMHiveName, dwErr);
  540. goto Err;
  541. }
  543. dwErr = RegOpenKeyW (HKEY_LOCAL_MACHINE, s_cszRestoreSAMHiveName, &hKeySam);
  544. if (dwErr != ERROR_SUCCESS)
  545. {
  546. trace(0, "! RegOpenKeyW on %S: %ld", s_cszRestoreSAMHiveName, dwErr);
  547. goto Err;
  548. }
  550. MakeRestorePath (wcsPath, wcsSystem, rp.GetDir());
  551. lstrcatW (wcsPath, SNAPSHOT_DIR_NAME);
  552. lstrcatW (wcsPath, L"\\");
  553. lstrcatW (wcsPath, s_cszHKLMFilePrefix);
  554. lstrcatW (wcsPath, s_cszSecurityHiveName);
  556. dwErr = RegLoadKeyW (HKEY_LOCAL_MACHINE, s_cszRestoreSECURITYHiveName, wcsPath);
  557. if (dwErr != ERROR_SUCCESS)
  558. {
  559. trace(0, "! RegLoadKeyW on %S: %ld", s_cszRestoreSECURITYHiveName, dwErr);
  560. goto Err;
  561. }
  563. dwErr = RegOpenKeyW (HKEY_LOCAL_MACHINE, s_cszRestoreSECURITYHiveName,&hKeySecurity);
  564. if (dwErr != ERROR_SUCCESS)
  565. {
  566. trace(0, "! RegOpenKeyW on %S: %ld", s_cszRestoreSECURITYHiveName, dwErr);
  567. goto Err;
  568. }
  570. MakeRestorePath (wcsPath, wcsSystem, rp.GetDir());
  571. lstrcatW (wcsPath, SNAPSHOT_DIR_NAME);
  572. lstrcatW (wcsPath, L"\\");
  573. lstrcatW (wcsPath, s_cszHKLMFilePrefix);
  574. lstrcatW (wcsPath, s_cszSystemHiveName);
  576. dwErr = RegLoadKeyW (HKEY_LOCAL_MACHINE, s_cszRestoreSYSTEMHiveName, wcsPath);
  577. if (dwErr != ERROR_SUCCESS)
  578. {
  579. trace(0, "! RegLoadKeyW on %S: %ld", s_cszRestoreSYSTEMHiveName, dwErr);
  580. goto Err;
  581. }
  583. dwErr = RegOpenKeyW (HKEY_LOCAL_MACHINE, s_cszRestoreSYSTEMHiveName, &hKeySystem);
  584. if (dwErr != ERROR_SUCCESS)
  585. {
  586. trace(0, "! RegOpenKeyW on %S: %ld", s_cszRestoreSYSTEMHiveName, dwErr);
  587. goto Err;
  588. }
  590. dwErr = RtlNtStatusToDosError(ForAllUsers(hKeySam,hKeySecurity,hKeySystem));
  591. if (dwErr != ERROR_SUCCESS)
  592. {
  593. trace(0, "! ForAllUsers : %ld", dwErr);
  594. goto Err;
  595. }
  597. dwErr = RestoreLsaSecrets ();
  598. if (dwErr != ERROR_SUCCESS)
  599. {
  600. trace(0, "! RestoreLsaSecrets : %ld", dwErr);
  601. }
  604. Err:
  605. if (hKeySam != NULL)
  606. {
  607. RegCloseKey (hKeySam);
  608. }
  610. dwTemp = RegUnLoadKeyW (HKEY_LOCAL_MACHINE, s_cszRestoreSAMHiveName);
  611. if (ERROR_SUCCESS != dwTemp)
  612. {
  613. trace(0, "! RegUnLoadKeyW 0n %S : %ld", s_cszRestoreSAMHiveName, dwTemp);
  614. }
  616. if (hKeySecurity != NULL)
  617. {
  618. RegCloseKey (hKeySecurity);
  619. }
  620. dwTemp = RegUnLoadKeyW (HKEY_LOCAL_MACHINE, s_cszRestoreSECURITYHiveName);
  621. if (ERROR_SUCCESS != dwTemp)
  622. {
  623. trace(0, "! RegUnLoadKeyW 0n %S : %ld", s_cszRestoreSECURITYHiveName, dwTemp);
  624. }
  626. if (hKeySystem != NULL)
  627. {
  628. RegCloseKey (hKeySystem);
  629. }
  630. dwTemp = RegUnLoadKeyW (HKEY_LOCAL_MACHINE, s_cszRestoreSYSTEMHiveName);
  631. if (ERROR_SUCCESS != dwTemp)
  632. {
  633. trace(0, "! RegUnLoadKeyW 0n %S : %ld", s_cszRestoreSYSTEMHiveName, dwTemp);
  634. }
  636. // restore the old privilege
  637. RtlAdjustPrivilege(SE_RESTORE_PRIVILEGE, OldPriv, FALSE, &OldPriv);
  639. Err0:
  640. // unregister this notification package
  641. RegisterNotificationDLL (HKEY_LOCAL_MACHINE, FALSE);
  643. TermAsyncTrace();
  644. return dwErr;
  645. }
  647. //+---------------------------------------------------------------------------
  648. //
  649. // Function: WaitForSAM
  650. //
  651. // Synopsis: waits for SAM database to initialize
  652. //
  653. // Arguments:
  654. //
  655. // History: 12-Apr-2000 HenryLee Created
  656. //
  657. //----------------------------------------------------------------------------
  659. DWORD WINAPI WaitForSAM (VOID *pv)
  660. {
  661. NTSTATUS nts = STATUS_SUCCESS;
  662. DWORD dwErr = ERROR_SUCCESS;
  663. DWORD WaitStatus;
  664. UNICODE_STRING EventName;
  665. HANDLE EventHandle;
  666. OBJECT_ATTRIBUTES EventAttributes;
  668. // Load SRClient
  669. g_CSRClientLoader.LoadSrClient();
  671. //
  672. // open SAM event
  673. //
  675. RtlInitUnicodeString( &EventName, L"\\SAM_SERVICE_STARTED");
  676. InitializeObjectAttributes( &EventAttributes, &EventName, 0, 0, NULL );
  678. nts = NtOpenEvent( &EventHandle,
  679. SYNCHRONIZE|EVENT_MODIFY_STATE,
  680. &EventAttributes );
  682. if ( !NT_SUCCESS(nts))
  683. {
  684. if( nts == STATUS_OBJECT_NAME_NOT_FOUND )
  685. {
  686. //
  687. // SAM hasn't created this event yet, let us create it now.
  688. // SAM opens this event to set it.
  689. //
  691. nts = NtCreateEvent( &EventHandle,
  692. SYNCHRONIZE|EVENT_MODIFY_STATE,
  693. &EventAttributes,
  694. NotificationEvent,
  695. FALSE ); // The event is initially not signaled
  697. if( nts == STATUS_OBJECT_NAME_EXISTS ||
  698. nts == STATUS_OBJECT_NAME_COLLISION )
  699. {
  700. //
  701. // second chance, if the SAM created the event before we did
  702. //
  704. nts = NtOpenEvent( &EventHandle,
  705. SYNCHRONIZE|EVENT_MODIFY_STATE,
  706. &EventAttributes );
  707. }
  708. }
  710. }
  711. //
  712. // Loop waiting.
  713. //
  715. if (NT_SUCCESS(nts))
  716. {
  717. WaitStatus = WaitForSingleObject( EventHandle, 60*1000 ); // 60 Seconds
  719. if ( WaitStatus == WAIT_TIMEOUT )
  720. {
  721. nts = STATUS_TIMEOUT;
  722. }
  723. else if ( WaitStatus != WAIT_OBJECT_0 )
  724. {
  725. nts = STATUS_UNSUCCESSFUL;
  726. }
  727. }
  729. (VOID) NtClose( EventHandle );
  731. if (NT_SUCCESS(nts)) // Okay, SAM is available
  732. {
  733. dwErr = RestorePasswords();
  734. }
  735. else
  736. {
  737. dwErr = RtlNtStatusToDosError (nts);
  738. }
  740. return dwErr;
  741. }
  743. //+---------------------------------------------------------------------------
  744. //
  745. // Function: InitializeChangeNotify and PasswordChangeNotify
  746. //
  747. // Synopsis: callback functions from SAM
  748. //
  749. // Arguments:
  750. //
  751. // History: 12-Apr-2000 HenryLee Created
  752. //
  753. //----------------------------------------------------------------------------
  755. BOOLEAN NTAPI InitializeChangeNotify ()
  756. {
  757. // we will call LoadSRClient from WaitForSAM
  759. HANDLE hThread = CreateThread (NULL,
  760. 0,
  761. WaitForSAM,
  762. NULL,
  763. 0,
  764. NULL);
  765. return TRUE;
  766. }
  768. NTSTATUS NTAPI PasswordChangeNotify ( PUNICODE_STRING UserName,
  769. ULONG RelativeId,
  770. PUNICODE_STRING NewPassword )
  771. {
  772. return STATUS_SUCCESS;
  773. }