archive
/
windows-xp
mirror of https://github.com/tongzx/nt5src
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Source code of Windows XP (NT5)
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
6 Commits
1 Branch
0 Tags
2.0 GiB
Branch: master
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'master'
${ noResults }
windows-xp/Source/XPSP1/NT/base/ntsetup/encrypt/setpwd.c

389 lines
8.9 KiB
Raw Permalink Normal View History

Add source files
4 years ago
  1. /*++
  3. Copyright (c) 1996 Microsoft Corporation
  5. Module Name:
  7. setpwd.c
  9. Abstract:
  11. Sets a user's password based on OWF password hash strings
  12. Calls SamiChangePasswordUser with encoded passwords.
  14. Author:
  16. Ovidiu Temereanca 17-Mar-2000 Initial implementation
  18. Revision History:
  20. --*/
  22. #include <nt.h>
  23. #include <ntrtl.h>
  24. #include <nturtl.h>
  25. #undef DOMAIN_ALL_ACCESS // defined in both ntsam.h and ntwinapi.h
  26. #include <ntsam.h>
  27. #include <ntsamp.h>
  28. //#include <ntlsa.h>
  29. #include <windef.h>
  30. #include <winbase.h>
  31. //#include <lmcons.h>
  32. #include <align.h>
  33. //#include <lm.h>
  34. //#include <limits.h>
  35. //#include <rpcutil.h>
  36. //#include <secobj.h>
  37. //#include <stddef.h>
  38. //#include <ntdsapi.h>
  39. //#include <dsgetdc.h>
  40. #include <windows.h>
  42. #include "encrypt.h"
  46. NTSTATUS
  47. pGetDomainId (
  48. IN SAM_HANDLE ServerHandle,
  49. OUT PSID* DomainId
  50. )
  52. /*++
  54. Routine Description:
  56. Return a domain ID of the account domain of a server.
  58. Arguments:
  60. ServerHandle - A handle to the SAM server to open the domain on
  62. DomainId - Receives a pointer to the domain ID.
  63. Caller must deallocate buffer using SamFreeMemory.
  65. Return Value:
  67. Error code for the operation.
  69. --*/
  71. {
  72. NTSTATUS status;
  73. SAM_ENUMERATE_HANDLE EnumContext;
  74. PSAM_RID_ENUMERATION EnumBuffer = NULL;
  75. DWORD CountReturned = 0;
  76. PSID LocalDomainId = NULL;
  77. DWORD LocalBuiltinDomainSid[sizeof(SID) / sizeof(DWORD) + SID_MAX_SUB_AUTHORITIES];
  78. SID_IDENTIFIER_AUTHORITY BuiltinAuthority = SECURITY_NT_AUTHORITY;
  79. BOOL b = FALSE;
  80. ULONG i;
  82. //
  83. // Compute the builtin domain sid.
  84. //
  85. RtlInitializeSid((PSID) LocalBuiltinDomainSid, &BuiltinAuthority, 1);
  86. *(RtlSubAuthoritySid((PSID)LocalBuiltinDomainSid, 0)) = SECURITY_BUILTIN_DOMAIN_RID;
  88. //
  89. // Loop getting the list of domain ids from SAM
  90. //
  91. EnumContext = 0;
  92. do {
  94. //
  95. // Get several domain names.
  96. //
  97. status = SamEnumerateDomainsInSamServer (
  98. ServerHandle,
  99. &EnumContext,
  100. &EnumBuffer,
  101. 8192,
  102. &CountReturned
  103. );
  105. if (!NT_SUCCESS (status)) {
  106. goto exit;
  107. }
  109. if (status != STATUS_MORE_ENTRIES) {
  110. b = TRUE;
  111. }
  113. //
  114. // Lookup the domain ids for the domains
  115. //
  117. for(i = 0; i < CountReturned; i++) {
  119. //
  120. // Free the sid from the previous iteration.
  121. //
  122. if (LocalDomainId != NULL) {
  123. SamFreeMemory (LocalDomainId);
  124. LocalDomainId = NULL;
  125. }
  127. //
  128. // Lookup the domain id
  129. //
  130. status = SamLookupDomainInSamServer (
  131. ServerHandle,
  132. &EnumBuffer[i].Name,
  133. &LocalDomainId
  134. );
  136. if (!NT_SUCCESS (status)) {
  137. goto exit;
  138. }
  140. if (RtlEqualSid ((PSID)LocalBuiltinDomainSid, LocalDomainId)) {
  141. continue;
  142. }
  144. *DomainId = LocalDomainId;
  145. LocalDomainId = NULL;
  146. status = NO_ERROR;
  147. goto exit;
  148. }
  150. SamFreeMemory(EnumBuffer);
  151. EnumBuffer = NULL;
  153. } while (!b);
  155. status = ERROR_NO_SUCH_DOMAIN;
  157. exit:
  158. if (EnumBuffer != NULL) {
  159. SamFreeMemory(EnumBuffer);
  160. }
  162. return status;
  163. }
  166. DWORD
  167. pSamOpenLocalUser (
  168. IN PCWSTR UserName,
  169. IN ACCESS_MASK DesiredAccess,
  170. IN PSAM_HANDLE DomainHandle,
  171. OUT PSAM_HANDLE UserHandle
  172. )
  174. /*++
  176. Routine Description:
  178. Returns a user handle given its name, desired access and a domain handle.
  180. Arguments:
  182. UserName - Specifies the user name
  184. DesiredAccess - Specifies the desired access to this user
  186. DoaminHandle - A handle to the domain to open the user on
  188. UserHandle - Receives a user handle.
  189. Caller must free the handle using SamCloseHandle.
  191. Return Value:
  193. Error code for the operation.
  195. --*/
  197. {
  198. DWORD status;
  199. UNICODE_STRING uniUserName;
  200. ULONG rid, *prid;
  201. PSID_NAME_USE nameUse;
  203. //
  204. // Lookup the RID
  205. //
  206. RtlInitUnicodeString (&uniUserName, UserName);
  208. status = SamLookupNamesInDomain (
  209. DomainHandle,
  210. 1,
  211. &uniUserName,
  212. &prid,
  213. &nameUse
  214. );
  215. if (status != NO_ERROR) {
  216. return status;
  217. }
  219. //
  220. // Save the RID
  221. //
  222. rid = *prid;
  224. //
  225. // free the memory.
  226. //
  227. SamFreeMemory (prid);
  228. SamFreeMemory (nameUse);
  230. //
  231. // Open the user object.
  232. //
  233. status = SamOpenUser(
  234. DomainHandle,
  235. DesiredAccess,
  236. rid,
  237. UserHandle
  238. );
  240. return status;
  241. }
  244. DWORD
  245. SetLocalUserEncryptedPassword (
  246. IN PCWSTR User,
  247. IN PCWSTR OldPassword,
  248. IN BOOL OldIsEncrypted,
  249. IN PCWSTR NewPassword,
  250. IN BOOL NewIsEncrypted
  251. )
  253. /*++
  255. Routine Description:
  257. Sets a new password for the given user. The password is in encrypted format (see encrypt.h for details).
  259. Arguments:
  261. User - Specifies the user name
  263. OldPassword - Specifies the old password
  264. OldIsEncrypted - Specifies TRUE if old password is provided in encrypted form
  265. or FALSE if it's in clear text
  266. OldIsComplex - Specifies TRUE if old password is complex; used only if OldIsEncrypted is TRUE,
  267. otherwise it's ignored.
  268. NewPassword - Specifies the new password
  269. NewIsEncrypted - Specifies TRUE if new password is provided in encrypted form
  270. or FALSE if it's in clear text
  272. Return Value:
  274. Win32 error code for the operation.
  276. --*/
  278. {
  279. DWORD status;
  280. LM_OWF_PASSWORD lmOwfOldPwd;
  281. NT_OWF_PASSWORD ntOwfOldPwd;
  282. BOOL complexOldPassword;
  283. LM_OWF_PASSWORD lmOwfNewPwd;
  284. NT_OWF_PASSWORD ntOwfNewPwd;
  285. UNICODE_STRING unicodeString;
  286. PSID serverHandle = NULL;
  287. PSID sidAccountsDomain = NULL;
  288. SAM_HANDLE handleAccountsDomain = NULL;
  289. SAM_HANDLE handleUser = NULL;
  291. if (!User) {
  292. return ERROR_INVALID_PARAMETER;
  293. }
  295. if (OldIsEncrypted) {
  296. if (!StringDecodeOwfPasswordW (OldPassword, &lmOwfOldPwd, &ntOwfOldPwd, &complexOldPassword)) {
  297. return ERROR_INVALID_PARAMETER;
  298. }
  299. } else {
  300. if (!EncodeLmOwfPasswordW (OldPassword, &lmOwfOldPwd, &complexOldPassword) ||
  301. !EncodeNtOwfPasswordW (OldPassword, &ntOwfOldPwd)
  302. ) {
  303. return ERROR_INVALID_PARAMETER;
  304. }
  305. }
  307. if (NewIsEncrypted) {
  308. if (!StringDecodeOwfPasswordW (NewPassword, &lmOwfNewPwd, &ntOwfNewPwd, NULL)) {
  309. return ERROR_INVALID_PARAMETER;
  310. }
  311. } else {
  312. if (!EncodeLmOwfPasswordW (NewPassword, &lmOwfNewPwd, NULL) ||
  313. !EncodeNtOwfPasswordW (NewPassword, &ntOwfNewPwd)
  314. ) {
  315. return ERROR_INVALID_PARAMETER;
  316. }
  317. }
  319. __try {
  320. //
  321. // Use SamConnect to connect to the local domain ("")
  322. // and get a handle to the local SAM server
  323. //
  324. RtlInitUnicodeString (&unicodeString, L"");
  325. status = SamConnect (
  326. &unicodeString,
  327. &serverHandle,
  328. SAM_SERVER_LOOKUP_DOMAIN | SAM_SERVER_ENUMERATE_DOMAINS,
  329. NULL
  330. );
  331. if (status != NO_ERROR) {
  332. __leave;
  333. }
  335. status = pGetDomainId (serverHandle, &sidAccountsDomain);
  336. if (status != NO_ERROR) {
  337. __leave;
  338. }
  340. //
  341. // Open the domain.
  342. //
  343. status = SamOpenDomain (
  344. serverHandle,
  345. DOMAIN_LOOKUP | DOMAIN_READ_PASSWORD_PARAMETERS,
  346. sidAccountsDomain,
  347. &handleAccountsDomain
  348. );
  349. if (status != NO_ERROR) {
  350. __leave;
  351. }
  353. status = pSamOpenLocalUser (
  354. User,
  355. USER_CHANGE_PASSWORD,
  356. handleAccountsDomain,
  357. &handleUser
  358. );
  359. if (status != NO_ERROR) {
  360. __leave;
  361. }
  363. status = SamiChangePasswordUser (
  364. handleUser,
  365. !complexOldPassword,
  366. &lmOwfOldPwd,
  367. &lmOwfNewPwd,
  368. TRUE,
  369. &ntOwfOldPwd,
  370. &ntOwfNewPwd
  371. );
  372. }
  373. __finally {
  374. if (handleUser) {
  375. SamCloseHandle (handleUser);
  376. }
  377. if (handleAccountsDomain) {
  378. SamCloseHandle (handleAccountsDomain);
  379. }
  380. if (sidAccountsDomain) {
  381. SamFreeMemory (sidAccountsDomain);
  382. }
  383. if (serverHandle) {
  384. SamCloseHandle (serverHandle);
  385. }
  386. }
  388. return RtlNtStatusToDosError (status);
  389. }