archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
3 Commits
1 Branch
0 Tags
1.5 GiB
Tree: 827363a95b
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '827363a95b'
${ noResults }
windows-server-2003/mergedcomponents/advapi32/mschapp.c

558 lines
20 KiB
Raw Normal View History

commiting as it is
4 years ago
  1. /*++
  3. Copyright (C) Microsoft Corporation, 1999
  5. Module Name:
  7. mschapp - MS-CHAP Password Change API
  9. Abstract:
  11. These APIs correspond to the MS-CHAP RFC -2433 sections 9 and 10. In order
  12. to develop an MS-CHAP RAS server that works with an NT domain, these APIs
  13. are required.
  15. The MS-CHAP change password APIs are exposed through a DLL that is obtained
  16. from PSS. This DLL is not distributed with NT4.0 or Win2000. It is up to
  17. the ISV to install this with their product. The DLL name is MSCHAPP.DLL.
  19. Only wide (Unicode) versions of these apis will be available. These are the
  20. 2 callable APIs:
  22. * MSChapSrvChangePassword
  23. * MsChapSrvChangePassword2
  25. --*/
  27. #define UNICODE
  28. #define _UNICODE
  29. #ifndef WIN32_LEAN_AND_MEAN
  30. #define WIN32_LEAN_AND_MEAN
  31. #endif
  33. #include <nt.h>
  34. #include <ntrtl.h>
  35. #include <nturtl.h>
  36. #include <windows.h>
  37. #include <ntsam.h>
  38. #include <ntsamp.h>
  39. #include <ntlsa.h>
  40. #include <mschapp.h>
  43. //////////////////////////////////////////////////////////////
  44. // //
  45. // //
  46. // Exported MSChap change password Functions //
  47. // //
  48. // //
  49. //////////////////////////////////////////////////////////////
  51. //critical section for MSChap change password functions
  52. CRITICAL_SECTION MSChapChangePassword;
  54. //function pointers for MSChap Functions
  55. HINSTANCE hSamlib = NULL;
  57. typedef NTSTATUS(* FNSAMCONNECT)(PUNICODE_STRING,
  58. PSAM_HANDLE,
  59. ACCESS_MASK,
  60. POBJECT_ATTRIBUTES);
  61. typedef NTSTATUS(* FNSAMOPENDOMAIN)(SAM_HANDLE,
  62. ACCESS_MASK,
  63. PSID,
  64. PSAM_HANDLE);
  65. typedef NTSTATUS(* FNSAMLOOKUPNAMESINDOMAIN)(SAM_HANDLE,ULONG,PUNICODE_STRING,
  66. PULONG*,PSID_NAME_USE *);
  67. typedef NTSTATUS(* FNSAMOPENUSER)(SAM_HANDLE,ACCESS_MASK,ULONG,PSAM_HANDLE);
  68. typedef NTSTATUS(* FNSAMICHANGEPASSWORDUSER)(SAM_HANDLE,BOOLEAN,PLM_OWF_PASSWORD,PLM_OWF_PASSWORD,
  69. BOOLEAN,PNT_OWF_PASSWORD,PNT_OWF_PASSWORD);
  70. typedef NTSTATUS(* FNSAMICHANGEPASSWORDUSER2)(PUNICODE_STRING,
  71. PUNICODE_STRING,
  72. PSAMPR_ENCRYPTED_USER_PASSWORD,
  73. PENCRYPTED_NT_OWF_PASSWORD,
  74. BOOLEAN,PSAMPR_ENCRYPTED_USER_PASSWORD,
  75. PENCRYPTED_LM_OWF_PASSWORD);
  76. typedef NTSTATUS(* FNSAMCLOSEHANDLE)(SAM_HANDLE);
  77. typedef NTSTATUS(* FNSAMFREEMEMORY)(PVOID);
  79. FNSAMCONNECT FnSamConnect = NULL;
  80. FNSAMOPENDOMAIN FnSamOpenDomain = NULL;
  81. FNSAMLOOKUPNAMESINDOMAIN FnSamLookupNamesInDomain = NULL;
  82. FNSAMOPENUSER FnSamOpenUser = NULL;
  83. FNSAMICHANGEPASSWORDUSER FnSamiChangePasswordUser = NULL;
  84. FNSAMICHANGEPASSWORDUSER2 FnSamiChangePasswordUser2 = NULL;
  85. FNSAMCLOSEHANDLE FnSamCloseHandle = NULL;
  86. FNSAMFREEMEMORY FnSamFreeMemory = NULL;
  89. /*++
  91. MSChapSrvChangePassword:
  93. Changes the password of a user account. Password will be set to
  94. NewPassword only if OldPassword matches the current user password for this
  95. user and there are no restrictions on using the new password. This call
  96. allows users to change their own password if they have access
  97. USER_CHANGE_PASSWORD. Password update restrictions apply.
  99. Arguments:
  101. ServerName - The server to operate on, or NULL for this machine.
  103. UserName - Name of user whose password is to be changed
  105. LMOldPresent - TRUE if the LmOldOwfPassword is valid. This should only be
  106. FALSE if the old password is too long to be represented by a LM
  107. password (Complex NT password). Note the LMNewOwfPassword must always
  108. be valid. If the new password is complex, the LMNewOwfPassword should
  109. be the well-known LM OWF of a NULL password.
  111. LmOldOwfPassword - One-way-function of the current LM password for the
  112. user. Ignored if LmOldPresent == FALSE
  114. LmNewOwfPassword - One-way-function of the new LM password for the user.
  116. NtOldOwfPassword - One-way-function of the current NT password for the
  117. user.
  119. NtNewOwfPassword - One-way-function of the new NT password for the user.
  121. Return Value:
  123. STATUS_SUCCESS - The Service completed successfully.
  125. STATUS_ACCESS_DENIED - Caller does not have the appropriate access to
  126. complete the operation.
  128. STATUS_INVALID_HANDLE - The supplied server or username was not valid.
  130. STATUS_ILL_FORMED_PASSWORD - The new password is poorly formed, e.g.
  131. contains characters that can't be entered from the keyboard, etc.
  133. STATUS_PASSWORD_RESTRICTION - A restriction prevents the password from
  134. being changed. This may be for a number of reasons, including time
  135. restrictions on how often a password may be changed or length
  136. restrictions on the provided password. This error might also be
  137. returned if the new password matched a password in the recent history
  138. log for the account. Security administrators indicate how many of the
  139. most recently used passwords may not be re-used. These are kept in
  140. the password recent history log.
  142. STATUS_WRONG_PASSWORD - OldPassword does not contain the user's current
  143. password.
  145. STATUS_INVALID_DOMAIN_STATE - The domain server is not in the correct
  146. state (disabled or enabled) to perform the requested operation. The
  147. domain server must be enabled for this operation
  149. STATUS_INVALID_DOMAIN_ROLE - The domain server is serving the incorrect
  150. role (primary or backup) to perform the requested operation.
  152. STATUS_INVALID_PARAMETER_MIX - LmOldPresent or NtPresent or both must be
  153. TRUE.
  155. --*/
  156. WINADVAPI DWORD WINAPI
  157. MSChapSrvChangePassword(
  158. IN LPWSTR ServerName,
  159. IN LPWSTR UserName,
  160. IN BOOLEAN LmOldPresent,
  161. IN PLM_OWF_PASSWORD LmOldOwfPassword,
  162. IN PLM_OWF_PASSWORD LmNewOwfPassword,
  163. IN PNT_OWF_PASSWORD NtOldOwfPassword,
  164. IN PNT_OWF_PASSWORD NtNewOwfPassword)
  165. {
  166. NTSTATUS Status=STATUS_SUCCESS;
  167. DWORD WinErr=ERROR_SUCCESS;
  168. OBJECT_ATTRIBUTES oa;
  169. UNICODE_STRING UnicodeName;
  170. SAM_HANDLE SamHandle = NULL;
  171. SAM_HANDLE DomainHandle = NULL;
  172. SAM_HANDLE UserHandle = NULL;
  173. LSA_HANDLE LsaHandle = NULL;
  174. PPOLICY_ACCOUNT_DOMAIN_INFO DomainInfo = NULL;
  175. PULONG RelativeIds = NULL;
  176. PSID_NAME_USE Use = NULL;
  178. if (NULL == UserName || NULL == LmOldOwfPassword || NULL == LmNewOwfPassword ||
  179. NULL == NtOldOwfPassword || NULL == NtNewOwfPassword) {
  180. WinErr = ERROR_INVALID_PARAMETER;
  181. goto Cleanup;
  182. }
  185. //
  186. // Initialization.
  187. //
  189. if ( hSamlib == NULL )
  190. {
  191. RtlEnterCriticalSection( &MSChapChangePassword );
  193. if ( hSamlib == NULL )
  194. {
  195. hSamlib = LoadLibrary(L"samlib.dll");
  196. WinErr = GetLastError();
  197. if (ERROR_SUCCESS != WinErr) {
  198. goto Cleanup;
  199. }
  200. if (hSamlib != NULL) {
  202. FnSamConnect = (FNSAMCONNECT) GetProcAddress(hSamlib,
  203. "SamConnect");
  204. WinErr = GetLastError();
  205. if (ERROR_SUCCESS != WinErr) {
  206. goto Cleanup;
  207. }
  208. FnSamOpenDomain = (FNSAMOPENDOMAIN) GetProcAddress(hSamlib,
  209. "SamOpenDomain");
  210. WinErr = GetLastError();
  211. if (ERROR_SUCCESS != WinErr) {
  212. goto Cleanup;
  213. }
  214. FnSamLookupNamesInDomain = (FNSAMLOOKUPNAMESINDOMAIN) GetProcAddress(hSamlib,
  215. "SamLookupNamesInDomain");
  216. WinErr = GetLastError();
  217. if (ERROR_SUCCESS != WinErr) {
  218. goto Cleanup;
  219. }
  220. FnSamOpenUser = (FNSAMOPENUSER) GetProcAddress(hSamlib,
  221. "SamOpenUser");
  222. WinErr = GetLastError();
  223. if (ERROR_SUCCESS != WinErr) {
  224. goto Cleanup;
  225. }
  226. FnSamCloseHandle = (FNSAMCLOSEHANDLE) GetProcAddress(hSamlib,
  227. "SamCloseHandle");
  228. WinErr = GetLastError();
  229. if (ERROR_SUCCESS != WinErr) {
  230. goto Cleanup;
  231. }
  232. FnSamFreeMemory = (FNSAMFREEMEMORY) GetProcAddress(hSamlib,
  233. "SamFreeMemory");
  234. WinErr = GetLastError();
  235. if (ERROR_SUCCESS != WinErr) {
  236. goto Cleanup;
  237. }
  238. FnSamiChangePasswordUser = (FNSAMICHANGEPASSWORDUSER) GetProcAddress(hSamlib,
  239. "SamiChangePasswordUser");
  240. WinErr = GetLastError();
  241. if (ERROR_SUCCESS != WinErr) {
  242. goto Cleanup;
  243. }
  244. FnSamiChangePasswordUser2 = (FNSAMICHANGEPASSWORDUSER2) GetProcAddress(hSamlib,
  245. "SamiChangePasswordUser2");
  246. WinErr = GetLastError();
  247. if (ERROR_SUCCESS != WinErr) {
  248. goto Cleanup;
  249. }
  250. }
  251. }
  253. RtlLeaveCriticalSection( &MSChapChangePassword );
  255. }
  257. RtlInitUnicodeString(&UnicodeName, ServerName);
  258. InitializeObjectAttributes(&oa, NULL, 0, NULL, NULL);
  261. //
  262. // Connect to the LSA on the server
  263. //
  265. Status = LsaOpenPolicy(
  266. &UnicodeName,
  267. &oa,
  268. POLICY_VIEW_LOCAL_INFORMATION,
  269. &LsaHandle);
  270. if (!NT_SUCCESS(Status))
  271. {
  272. goto Cleanup;
  273. }
  275. Status = LsaQueryInformationPolicy(
  276. LsaHandle,
  277. PolicyAccountDomainInformation,
  278. (PVOID *)&DomainInfo);
  279. if (!NT_SUCCESS(Status))
  280. {
  281. goto Cleanup;
  282. }
  284. Status = FnSamConnect(
  285. &UnicodeName,
  286. &SamHandle,
  287. SAM_SERVER_LOOKUP_DOMAIN,
  288. &oa);
  289. if (!NT_SUCCESS(Status))
  290. {
  291. goto Cleanup;
  292. }
  294. Status = FnSamOpenDomain(
  295. SamHandle,
  296. DOMAIN_LOOKUP | DOMAIN_READ_PASSWORD_PARAMETERS | DOMAIN_READ_PASSWORD_PARAMETERS,
  297. DomainInfo->DomainSid,
  298. &DomainHandle);
  299. if (!NT_SUCCESS(Status))
  300. {
  301. goto Cleanup;
  302. }
  304. RtlInitUnicodeString(
  305. &UnicodeName,
  306. UserName);
  308. Status = FnSamLookupNamesInDomain(
  309. DomainHandle,
  310. 1,
  311. &UnicodeName,
  312. &RelativeIds,
  313. &Use);
  314. if (!NT_SUCCESS(Status))
  315. {
  316. goto Cleanup;
  317. }
  319. if (Use[0] != SidTypeUser)
  320. {
  321. WinErr = ERROR_INVALID_SID;
  322. goto Cleanup;
  323. }
  325. Status = FnSamOpenUser(
  326. DomainHandle,
  327. USER_CHANGE_PASSWORD,
  328. RelativeIds[0],
  329. &UserHandle);
  330. if (!NT_SUCCESS(Status))
  331. {
  332. goto Cleanup;
  333. }
  335. Status = FnSamiChangePasswordUser(
  336. UserHandle,
  337. LmOldPresent, // Only false if Old password too complex
  338. LmOldOwfPassword,
  339. LmNewOwfPassword,
  340. TRUE, // NT password present
  341. NtOldOwfPassword,
  342. NtNewOwfPassword);
  343. if (!NT_SUCCESS(Status))
  344. {
  345. goto Cleanup;
  346. }
  349. Cleanup:
  350. if (LsaHandle != NULL)
  351. {
  352. LsaClose(LsaHandle);
  353. }
  354. if (UserHandle != NULL)
  355. {
  356. FnSamCloseHandle(UserHandle);
  357. }
  358. if (DomainHandle != NULL)
  359. {
  360. FnSamCloseHandle(DomainHandle);
  361. }
  362. if (SamHandle != NULL)
  363. {
  364. FnSamCloseHandle(SamHandle);
  365. }
  366. if (DomainInfo != NULL)
  367. {
  368. LsaFreeMemory(DomainInfo);
  369. }
  370. if (RelativeIds != NULL)
  371. {
  372. FnSamFreeMemory(RelativeIds);
  373. }
  374. if (Use != NULL)
  375. {
  376. FnSamFreeMemory(Use);
  377. }
  379. if (ERROR_SUCCESS != WinErr) {
  380. return WinErr;
  381. }
  383. return RtlNtStatusToDosError(Status);
  384. }
  387. /*++
  389. MSChapSrvChangePassword2:
  391. Changes the password of a user account. Password will be set to
  392. NewPassword only if OldPassword matches the current user password for this
  393. user and there are no restrictions on using the new password. This call
  394. allows users to change their own password if they have access
  395. USER_CHANGE_PASSWORD. Password update restrictions apply.
  397. Arguments:
  399. ServerName - The server to operate on, or NULL for this machine.
  401. UserName - Name of user whose password is to be changed
  403. NewPasswordEncryptedWithOldNt - The new cleartext password encrypted with
  404. the old NT OWF password.
  406. OldNtOwfPasswordEncryptedWithNewNt - The old NT OWF password encrypted
  407. with the new NT OWF password.
  409. LmPresent - If TRUE, indicates that the following two last parameter was
  410. encrypted with the LM OWF password not the NT OWF password.
  412. NewPasswordEncryptedWithOldLm - The new cleartext password encrypted with
  413. the old LM OWF password.
  415. OldLmOwfPasswordEncryptedWithNewLmOrNt - The old LM OWF password encrypted
  416. with the new LM OWF password.
  418. Return Value:
  420. STATUS_SUCCESS - The Service completed successfully.
  422. STATUS_ACCESS_DENIED - Caller does not have the appropriate access to
  423. complete the operation.
  425. STATUS_INVALID_HANDLE - The supplied server or username was not valid.
  427. STATUS_ILL_FORMED_PASSWORD - The new password is poorly formed, e.g.
  428. contains characters that can't be entered from the keyboard, etc.
  430. STATUS_PASSWORD_RESTRICTION - A restriction prevents the password from
  431. being changed. This may be for a number of reasons, including time
  432. restrictions on how often a password may be changed or length
  433. restrictions on the provided password. This error might also be
  434. returned if the new password matched a password in the recent history
  435. log for the account. Security administrators indicate how many of the
  436. most recently used passwords may not be re-used. These are kept in
  437. the password recent history log.
  439. STATUS_WRONG_PASSWORD - OldPassword does not contain the user's current
  440. password.
  442. STATUS_INVALID_DOMAIN_STATE - The domain server is not in the correct
  443. state (disabled or enabled) to perform the requested operation. The
  444. domain server must be enabled for this operation.
  446. STATUS_INVALID_DOMAIN_ROLE - The domain server is serving the incorrect
  447. role (primary or backup) to perform the requested operation.
  449. --*/
  450. WINADVAPI DWORD WINAPI
  451. MSChapSrvChangePassword2(
  452. IN LPWSTR ServerName,
  453. IN LPWSTR UserName,
  454. IN PSAMPR_ENCRYPTED_USER_PASSWORD NewPasswordEncryptedWithOldNt,
  455. IN PENCRYPTED_NT_OWF_PASSWORD OldNtOwfPasswordEncryptedWithNewNt,
  456. IN BOOLEAN LmPresent,
  457. IN PSAMPR_ENCRYPTED_USER_PASSWORD NewPasswordEncryptedWithOldLm,
  458. IN PENCRYPTED_LM_OWF_PASSWORD OldLmOwfPasswordEncryptedWithNewLmOrNt)
  459. {
  460. UNICODE_STRING UnicodeServer;
  461. UNICODE_STRING UnicodeUser;
  462. DWORD WinErr = ERROR_SUCCESS;
  464. if (NULL == UserName || NULL == NewPasswordEncryptedWithOldNt ||
  465. NULL == NewPasswordEncryptedWithOldLm || NULL ==OldNtOwfPasswordEncryptedWithNewNt ||
  466. NULL == OldLmOwfPasswordEncryptedWithNewLmOrNt) {
  467. WinErr = ERROR_INVALID_PARAMETER;
  468. goto Cleanup;
  469. }
  471. //
  472. // Initialization.
  473. //
  475. if ( hSamlib == NULL )
  476. {
  477. RtlEnterCriticalSection( &MSChapChangePassword );
  479. if ( hSamlib == NULL )
  480. {
  481. hSamlib = LoadLibrary(L"samlib.dll");
  482. WinErr = GetLastError();
  483. if (ERROR_SUCCESS != WinErr) {
  484. goto Cleanup;
  485. }
  486. if (hSamlib != NULL) {
  488. FnSamConnect = (FNSAMCONNECT) GetProcAddress(hSamlib,
  489. "SamConnect");
  490. WinErr = GetLastError();
  491. if (ERROR_SUCCESS != WinErr) {
  492. goto Cleanup;
  493. }
  494. FnSamOpenDomain = (FNSAMOPENDOMAIN) GetProcAddress(hSamlib,
  495. "SamOpenDomain");
  496. WinErr = GetLastError();
  497. if (ERROR_SUCCESS != WinErr) {
  498. goto Cleanup;
  499. }
  500. FnSamLookupNamesInDomain = (FNSAMLOOKUPNAMESINDOMAIN) GetProcAddress(hSamlib,
  501. "SamLookupNamesInDomain");
  502. WinErr = GetLastError();
  503. if (ERROR_SUCCESS != WinErr) {
  504. goto Cleanup;
  505. }
  506. FnSamOpenUser = (FNSAMOPENUSER) GetProcAddress(hSamlib,
  507. "SamOpenUser");
  508. WinErr = GetLastError();
  509. if (ERROR_SUCCESS != WinErr) {
  510. goto Cleanup;
  511. }
  512. FnSamCloseHandle = (FNSAMCLOSEHANDLE) GetProcAddress(hSamlib,
  513. "SamCloseHandle");
  514. WinErr = GetLastError();
  515. if (ERROR_SUCCESS != WinErr) {
  516. goto Cleanup;
  517. }
  518. FnSamFreeMemory = (FNSAMFREEMEMORY) GetProcAddress(hSamlib,
  519. "SamFreeMemory");
  520. WinErr = GetLastError();
  521. if (ERROR_SUCCESS != WinErr) {
  522. goto Cleanup;
  523. }
  524. FnSamiChangePasswordUser = (FNSAMICHANGEPASSWORDUSER) GetProcAddress(hSamlib,
  525. "SamiChangePasswordUser");
  526. WinErr = GetLastError();
  527. if (ERROR_SUCCESS != WinErr) {
  528. goto Cleanup;
  529. }
  530. FnSamiChangePasswordUser2 = (FNSAMICHANGEPASSWORDUSER2) GetProcAddress(hSamlib,
  531. "SamiChangePasswordUser2");
  532. WinErr = GetLastError();
  533. if (ERROR_SUCCESS != WinErr) {
  534. goto Cleanup;
  535. }
  536. }
  537. }
  540. RtlLeaveCriticalSection( &MSChapChangePassword );
  542. }
  545. RtlInitUnicodeString(&UnicodeServer, ServerName);
  546. RtlInitUnicodeString(&UnicodeUser, UserName);
  548. return RtlNtStatusToDosError(FnSamiChangePasswordUser2(&UnicodeServer,
  549. &UnicodeUser,
  550. NewPasswordEncryptedWithOldNt,
  551. OldNtOwfPasswordEncryptedWithNewNt,
  552. LmPresent,
  553. NewPasswordEncryptedWithOldLm,
  554. OldLmOwfPasswordEncryptedWithNewLmOrNt));
  556. Cleanup:
  557. return WinErr;
  559. }