archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
3 Commits
1 Branch
0 Tags
1.5 GiB
Tree: 827363a95b
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '827363a95b'
${ noResults }
windows-server-2003/net/sfm/uam/macsource/macssp/boot/cache.c

305 lines
8.1 KiB
Raw Normal View History

commiting as it is
4 years ago
  1. #ifndef MAC
  2. #include <security.h>
  3. #endif
  5. #include <bootdefs.h>
  6. #include <sspi.h>
  7. #include <ntlmsspi.h>
  8. #include <crypt.h>
  9. #include <cred.h>
  10. #include <winerror.h>
  11. #include "cache.h"
  13. #ifndef MAC
  14. #include <rpc.h>
  15. #endif
  17. #define toupper(_c) ( ((_c) >= 'a' && (_c) <= 'z') ? ( (_c)-'a'+'A' ) : (_c) )
  19. BOOL
  20. SspGetWorkstation(
  21. PSSP_CREDENTIAL Credential
  22. );
  24. static PSSP_CREDENTIAL Cache = NULL;
  26. void
  27. CacheInitializeCache(
  28. )
  29. {
  30. }
  32. BOOL
  33. CacheGetPassword(
  34. PSSP_CREDENTIAL Credential
  35. )
  36. {
  37. if (Cache == NULL) {
  38. return (FALSE);
  39. }
  41. #ifdef BL_USE_LM_PASSWORD
  42. Credential->LmPassword = SspAlloc (sizeof(LM_OWF_PASSWORD));
  43. if (Credential->LmPassword == NULL) {
  44. return (FALSE);
  45. }
  46. #endif
  47. Credential->NtPassword = (LM_OWF_PASSWORD*)SspAlloc (sizeof(NT_OWF_PASSWORD));
  48. if (Credential->NtPassword == NULL) {
  49. return (FALSE);
  50. }
  51. #ifdef BL_USE_LM_PASSWORD
  52. _fmemcpy((PCHAR)Credential->LmPassword, (PCHAR)Cache->LmPassword, sizeof(LM_OWF_PASSWORD));
  53. #endif
  54. _fmemcpy((PCHAR)Credential->NtPassword, (PCHAR)Cache->NtPassword, sizeof(NT_OWF_PASSWORD));
  56. return (TRUE);
  57. }
  59. SECURITY_STATUS
  60. CacheSetCredentials(
  61. IN PVOID AuthData,
  62. PSSP_CREDENTIAL Credential
  63. )
  64. {
  65. SEC_WINNT_AUTH_IDENTITY *Identity = (SEC_WINNT_AUTH_IDENTITY*)AuthData;
  66. char TmpText[CLEAR_BLOCK_LENGTH*2];
  67. NT_PASSWORD TmpNtPassword;
  68. WCHAR TmpUnicodeText[CLEAR_BLOCK_LENGTH*2];
  69. int Length = 0;
  70. int i = 0;
  72. if (Identity->Domain == NULL)
  73. return SEC_E_UNKNOWN_CREDENTIALS;
  75. Credential->Username = NULL;
  76. Credential->Domain = NULL;
  77. #ifdef BL_USE_LM_PASSWORD
  78. Credential->LmPassword = NULL;
  79. #endif
  80. Credential->NtPassword = NULL;
  81. Credential->Workstation = NULL;
  83. // If no identity is passed and there is no cached identity, give up.
  84. if (AuthData == NULL)
  85. {
  86. if (Cache == NULL)
  87. return SEC_E_UNKNOWN_CREDENTIALS;
  88. }
  90. // Save the latest authentication information.
  91. else
  92. {
  94. // If an old cache entry exists, release its strings.
  95. if (Cache != NULL)
  96. {
  97. if (Cache->Username != NULL)
  98. SspFree(Cache->Username);
  99. if (Cache->Domain != NULL)
  100. SspFree(Cache->Domain);
  101. if (Cache->Workstation != NULL)
  102. SspFree(Cache->Workstation);
  103. #ifdef BL_USE_LM_PASSWORD
  104. if (Cache->LmPassword != NULL)
  105. SspFree(Cache->LmPassword);
  106. #endif
  107. if (Cache->NtPassword != NULL)
  108. SspFree(Cache->NtPassword);
  109. }
  111. // Otherwise, allocate a cache entry
  112. else
  113. {
  114. Cache = (PSSP_CREDENTIAL) SspAlloc (sizeof(SSP_CREDENTIAL));
  115. if (Cache == NULL) {
  116. return (SEC_E_INSUFFICIENT_MEMORY);
  117. }
  118. }
  120. Cache->Username = NULL;
  121. Cache->Domain = NULL;
  122. #ifdef BL_USE_LM_PASSWORD
  123. Cache->LmPassword = NULL;
  124. #endif
  125. Cache->NtPassword = NULL;
  126. Cache->Workstation = NULL;
  128. Cache->Username = (PCHAR)SspAlloc(_fstrlen((const char*)Identity->User) + 1);
  129. if (Cache->Username == NULL) {
  130. goto cache_failure;
  131. }
  132. _fstrcpy(Cache->Username, (const char*)Identity->User);
  134. Cache->Domain = (PCHAR)SspAlloc(_fstrlen((const char*)Identity->Domain) + 1);
  135. if (Cache->Domain == NULL) {
  136. goto cache_failure;
  137. }
  138. _fstrcpy(Cache->Domain, (const char*)Identity->Domain);
  140. // If netbios won't tell us the workstation name, make one up.
  141. if (!SspGetWorkstation(Cache))
  142. {
  143. Cache->Workstation = (PCHAR)SspAlloc(_fstrlen("none") + 1);
  144. if (Cache->Workstation == NULL) {
  145. goto cache_failure;
  146. }
  147. _fstrcpy(Cache->Workstation, "none");
  148. }
  150. #ifdef BL_USE_LM_PASSWORD
  151. Cache->LmPassword = SspAlloc (sizeof(LM_OWF_PASSWORD));
  152. if (Cache->LmPassword == NULL) {
  153. goto cache_failure;
  154. }
  155. #endif
  157. Cache->NtPassword = (LM_OWF_PASSWORD*)SspAlloc (sizeof(NT_OWF_PASSWORD));
  158. if (Cache->NtPassword == NULL) {
  159. goto cache_failure;
  160. }
  162. #ifdef ALLOW_NON_OWF_PASSWORD
  163. if ( (Credential->CredentialUseFlags & SECPKG_CRED_OWF_PASSWORD) == 0 ) {
  165. if (Identity->Password == NULL)
  166. Length = 0;
  167. else
  168. Length = _fstrlen(Identity->Password);
  169. if (Length > CLEAR_BLOCK_LENGTH * 2)
  170. goto cache_failure;
  172. // Allow NULL and "\0" passwords by prefilling TmpText with and
  173. // empty string.
  174. if (Length == 0)
  175. TmpText[0] = 0;
  176. else
  177. for (i = 0; i <= Length; i++) {
  178. TmpText[i] = toupper(Identity->Password[i]);
  179. TmpUnicodeText[i] = (WCHAR)(Identity->Password[i]);
  180. }
  182. #ifdef BL_USE_LM_PASSWORD
  183. CalculateLmOwfPassword((PLM_PASSWORD)TmpText, Cache->LmPassword);
  184. #endif
  186. TmpNtPassword.Buffer = TmpUnicodeText;
  187. TmpNtPassword.Length = Length * sizeof(WCHAR);
  188. TmpNtPassword.MaximumLength = sizeof(TmpUnicodeText);
  189. CalculateNtOwfPassword(&TmpNtPassword, Cache->NtPassword);
  191. } else
  192. #endif
  193. {
  195. //
  196. // In this case the passed-in password is the LM and NT OWF
  197. // passwords concatenated together.
  198. //
  200. #ifdef BL_USE_LM_PASSWORD
  201. _fmemcpy(Cache->LmPassword, Identity->Password, sizeof(LM_OWF_PASSWORD));
  202. #endif
  203. _fmemcpy(Cache->NtPassword, Identity->Password + sizeof(LM_OWF_PASSWORD), sizeof(NT_OWF_PASSWORD));
  205. }
  207. }
  209. // Copy the credentials for the caller.
  210. Credential->Username = (PCHAR)SspAlloc(_fstrlen(Cache->Username) + 1);
  211. if (Credential->Username == NULL) {
  212. goto out_failure;
  213. }
  214. _fstrcpy(Credential->Username, Cache->Username);
  216. if (_fstrcmp(Cache->Domain, "WORKGROUP") != 0) {
  217. Credential->Domain = (PCHAR)SspAlloc(_fstrlen(Cache->Domain) + 1);
  218. if (Credential->Domain == NULL) {
  219. goto out_failure;
  220. }
  221. _fstrcpy(Credential->Domain, Cache->Domain);
  222. }
  224. Credential->Workstation = (PCHAR)SspAlloc(_fstrlen(Cache->Workstation) + 1);
  225. if (Credential->Workstation == NULL) {
  226. goto out_failure;
  227. }
  228. _fstrcpy(Credential->Workstation, Cache->Workstation);
  230. #ifdef BL_USE_LM_PASSWORD
  231. Credential->LmPassword = SspAlloc(sizeof(LM_OWF_PASSWORD));
  232. if (Credential->LmPassword == NULL) {
  233. goto out_failure;
  234. }
  235. _fmemcpy(Credential->LmPassword, Cache->LmPassword, sizeof(LM_OWF_PASSWORD));
  236. #endif
  238. Credential->NtPassword = (LM_OWF_PASSWORD*)SspAlloc(sizeof(NT_OWF_PASSWORD));
  239. if (Credential->NtPassword == NULL) {
  240. goto out_failure;
  241. }
  242. _fmemcpy(Credential->NtPassword, Cache->NtPassword, sizeof(NT_OWF_PASSWORD));
  244. return (SEC_E_OK);
  246. cache_failure:
  248. if (Cache->Username != NULL) {
  249. SspFree(Cache->Username);
  250. }
  252. if (Cache->Domain != NULL) {
  253. SspFree(Cache->Domain);
  254. }
  256. if (Cache->Workstation != NULL) {
  257. SspFree(Cache->Workstation);
  258. }
  260. #ifdef BL_USE_LM_PASSWORD
  261. if (Cache->LmPassword != NULL) {
  262. SspFree(Cache->LmPassword);
  263. }
  264. #endif
  266. if (Cache->NtPassword != NULL) {
  267. SspFree(Cache->NtPassword);
  268. }
  270. SspFree(Cache);
  271. Cache = NULL;
  273. out_failure:
  275. if (Credential->Username != NULL) {
  276. SspFree(Credential->Username);
  277. Credential->Username = NULL;
  278. }
  280. if (Credential->Domain != NULL) {
  281. SspFree(Credential->Domain);
  282. Credential->Domain = NULL;
  283. }
  285. if (Credential->Workstation != NULL) {
  286. SspFree(Credential->Workstation);
  287. Credential->Workstation = NULL;
  288. }
  290. #ifdef BL_USE_LM_PASSWORD
  291. if (Credential->LmPassword != NULL) {
  292. SspFree(Credential->LmPassword);
  293. Credential->LmPassword = NULL;
  294. }
  295. #endif
  297. if (Credential->NtPassword != NULL) {
  298. SspFree(Credential->NtPassword);
  299. Credential->NtPassword = NULL;
  300. }
  302. return (SEC_E_INSUFFICIENT_MEMORY);
  303. }