archive
/
windows-xp
mirror of https://github.com/tongzx/nt5src
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Source code of Windows XP (NT5)
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
6 Commits
1 Branch
0 Tags
4.0 GiB
Branch: master
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'master'
${ noResults }
windows-xp/Source/XPSP1/NT/inetsrv/iis/setup/util/chkpass/other.cpp

421 lines
11 KiB
Raw Permalink Normal View History

Add source files
4 years ago
  1. #include <stdio.h>
  2. #include <windows.h>
  3. #include <winver.h>
  4. #include <tchar.h>
  5. #include <ole2.h>
  6. #include <shlobj.h>
  8. #include <winnt.h>
  9. #include <subauth.h>
  11. #include <lmaccess.h>
  12. #include <lmserver.h>
  13. #include <lmapibuf.h>
  14. #include <lmerr.h>
  16. #include <basetsd.h>
  18. #define SECURITY_WIN32
  19. #define ISSP_LEVEL 32
  20. #define ISSP_MODE 1
  21. #include <sspi.h>
  23. #include "other.h"
  25. //#ifdef UNICODE
  26. BOOL ValidatePassword(IN LPCWSTR UserName,IN LPCWSTR Domain,IN LPCWSTR Password)
  27. /*++
  29. Routine Description:
  31. Uses SSPI to validate the specified password
  33. Arguments:
  35. UserName - Supplies the user name
  37. Domain - Supplies the user's domain
  39. Password - Supplies the password
  41. Return Value:
  43. TRUE if the password is valid.
  45. FALSE otherwise.
  47. --*/
  48. {
  49. SECURITY_STATUS SecStatus;
  50. SECURITY_STATUS AcceptStatus;
  51. SECURITY_STATUS InitStatus;
  52. CredHandle ClientCredHandle;
  53. CredHandle ServerCredHandle;
  54. BOOL ClientCredAllocated = FALSE;
  55. BOOL ServerCredAllocated = FALSE;
  56. CtxtHandle ClientContextHandle;
  57. CtxtHandle ServerContextHandle;
  58. TimeStamp Lifetime;
  59. ULONG ContextAttributes;
  60. PSecPkgInfo PackageInfo = NULL;
  61. ULONG ClientFlags;
  62. ULONG ServerFlags;
  63. TCHAR TargetName[100];
  64. SEC_WINNT_AUTH_IDENTITY_W AuthIdentity;
  65. BOOL Validated = FALSE;
  67. SecBufferDesc NegotiateDesc;
  68. SecBuffer NegotiateBuffer;
  70. SecBufferDesc ChallengeDesc;
  71. SecBuffer ChallengeBuffer;
  73. SecBufferDesc AuthenticateDesc;
  74. SecBuffer AuthenticateBuffer;
  76. AuthIdentity.User = (LPWSTR)UserName;
  77. AuthIdentity.UserLength = lstrlenW(UserName);
  78. AuthIdentity.Domain = (LPWSTR)Domain;
  79. AuthIdentity.DomainLength = lstrlenW(Domain);
  80. AuthIdentity.Password = (LPWSTR)Password;
  81. AuthIdentity.PasswordLength = lstrlenW(Password);
  82. AuthIdentity.Flags = SEC_WINNT_AUTH_IDENTITY_UNICODE;
  84. NegotiateBuffer.pvBuffer = NULL;
  85. ChallengeBuffer.pvBuffer = NULL;
  86. AuthenticateBuffer.pvBuffer = NULL;
  88. //
  89. // Get info about the security packages.
  90. //
  92. SecStatus = QuerySecurityPackageInfo( _T("NTLM"), &PackageInfo );
  94. if ( SecStatus != STATUS_SUCCESS ) {
  95. goto error_exit;
  96. }
  98. //
  99. // Acquire a credential handle for the server side
  100. //
  101. SecStatus = AcquireCredentialsHandle(
  102. NULL,
  103. _T("NTLM"),
  104. SECPKG_CRED_INBOUND,
  105. NULL,
  106. &AuthIdentity,
  107. NULL,
  108. NULL,
  109. &ServerCredHandle,
  110. &Lifetime );
  112. if ( SecStatus != STATUS_SUCCESS ) {
  113. goto error_exit;
  114. }
  115. ServerCredAllocated = TRUE;
  117. //
  118. // Acquire a credential handle for the client side
  119. //
  121. SecStatus = AcquireCredentialsHandle(
  122. NULL, // New principal
  123. _T("NTLM"),
  124. SECPKG_CRED_OUTBOUND,
  125. NULL,
  126. &AuthIdentity,
  127. NULL,
  128. NULL,
  129. &ClientCredHandle,
  130. &Lifetime );
  132. if ( SecStatus != STATUS_SUCCESS ) {
  133. goto error_exit;
  134. }
  135. ClientCredAllocated = TRUE;
  137. //
  138. // Get the NegotiateMessage (ClientSide)
  139. //
  141. NegotiateDesc.ulVersion = 0;
  142. NegotiateDesc.cBuffers = 1;
  143. NegotiateDesc.pBuffers = &NegotiateBuffer;
  145. NegotiateBuffer.cbBuffer = PackageInfo->cbMaxToken;
  146. NegotiateBuffer.BufferType = SECBUFFER_TOKEN;
  147. NegotiateBuffer.pvBuffer = LocalAlloc( 0, NegotiateBuffer.cbBuffer );
  148. if ( NegotiateBuffer.pvBuffer == NULL ) {
  149. goto error_exit;
  150. }
  152. ClientFlags = ISC_REQ_MUTUAL_AUTH | ISC_REQ_REPLAY_DETECT;
  154. InitStatus = InitializeSecurityContext(
  155. &ClientCredHandle,
  156. NULL, // No Client context yet
  157. NULL,
  158. ClientFlags,
  159. 0, // Reserved 1
  160. SECURITY_NATIVE_DREP,
  161. NULL, // No initial input token
  162. 0, // Reserved 2
  163. &ClientContextHandle,
  164. &NegotiateDesc,
  165. &ContextAttributes,
  166. &Lifetime );
  168. if ( !NT_SUCCESS(InitStatus) ) {
  169. goto error_exit;
  170. }
  172. //
  173. // Get the ChallengeMessage (ServerSide)
  174. //
  176. NegotiateBuffer.BufferType |= SECBUFFER_READONLY;
  177. ChallengeDesc.ulVersion = 0;
  178. ChallengeDesc.cBuffers = 1;
  179. ChallengeDesc.pBuffers = &ChallengeBuffer;
  181. ChallengeBuffer.cbBuffer = PackageInfo->cbMaxToken;
  182. ChallengeBuffer.BufferType = SECBUFFER_TOKEN;
  183. ChallengeBuffer.pvBuffer = LocalAlloc( 0, ChallengeBuffer.cbBuffer );
  184. if ( ChallengeBuffer.pvBuffer == NULL ) {
  185. goto error_exit;
  186. }
  187. ServerFlags = ASC_REQ_EXTENDED_ERROR;
  189. AcceptStatus = AcceptSecurityContext(
  190. &ServerCredHandle,
  191. NULL, // No Server context yet
  192. &NegotiateDesc,
  193. ServerFlags,
  194. SECURITY_NATIVE_DREP,
  195. &ServerContextHandle,
  196. &ChallengeDesc,
  197. &ContextAttributes,
  198. &Lifetime );
  200. if ( !NT_SUCCESS(AcceptStatus) ) {
  201. goto error_exit;
  202. }
  204. if (InitStatus != STATUS_SUCCESS)
  205. {
  207. //
  208. // Get the AuthenticateMessage (ClientSide)
  209. //
  211. ChallengeBuffer.BufferType |= SECBUFFER_READONLY;
  212. AuthenticateDesc.ulVersion = 0;
  213. AuthenticateDesc.cBuffers = 1;
  214. AuthenticateDesc.pBuffers = &AuthenticateBuffer;
  216. AuthenticateBuffer.cbBuffer = PackageInfo->cbMaxToken;
  217. AuthenticateBuffer.BufferType = SECBUFFER_TOKEN;
  218. AuthenticateBuffer.pvBuffer = LocalAlloc( 0, AuthenticateBuffer.cbBuffer );
  219. if ( AuthenticateBuffer.pvBuffer == NULL ) {
  220. goto error_exit;
  221. }
  223. SecStatus = InitializeSecurityContext(
  224. NULL,
  225. &ClientContextHandle,
  226. TargetName,
  227. 0,
  228. 0, // Reserved 1
  229. SECURITY_NATIVE_DREP,
  230. &ChallengeDesc,
  231. 0, // Reserved 2
  232. &ClientContextHandle,
  233. &AuthenticateDesc,
  234. &ContextAttributes,
  235. &Lifetime );
  237. if ( !NT_SUCCESS(SecStatus) ) {
  238. goto error_exit;
  239. }
  241. if (AcceptStatus != STATUS_SUCCESS) {
  243. //
  244. // Finally authenticate the user (ServerSide)
  245. //
  247. AuthenticateBuffer.BufferType |= SECBUFFER_READONLY;
  249. SecStatus = AcceptSecurityContext(
  250. NULL,
  251. &ServerContextHandle,
  252. &AuthenticateDesc,
  253. ServerFlags,
  254. SECURITY_NATIVE_DREP,
  255. &ServerContextHandle,
  256. NULL,
  257. &ContextAttributes,
  258. &Lifetime );
  260. if ( !NT_SUCCESS(SecStatus) ) {
  261. goto error_exit;
  262. }
  263. Validated = TRUE;
  265. }
  267. }
  269. error_exit:
  270. if (ServerCredAllocated) {
  271. FreeCredentialsHandle( &ServerCredHandle );
  272. }
  273. if (ClientCredAllocated) {
  274. FreeCredentialsHandle( &ClientCredHandle );
  275. }
  277. //
  278. // Final Cleanup
  279. //
  281. if ( NegotiateBuffer.pvBuffer != NULL ) {
  282. (VOID) LocalFree( NegotiateBuffer.pvBuffer );
  283. }
  285. if ( ChallengeBuffer.pvBuffer != NULL ) {
  286. (VOID) LocalFree( ChallengeBuffer.pvBuffer );
  287. }
  289. if ( AuthenticateBuffer.pvBuffer != NULL ) {
  290. (VOID) LocalFree( AuthenticateBuffer.pvBuffer );
  291. }
  292. return(Validated);
  293. }
  294. //#endif
  296. BOOL IsUserExist(LPWSTR strUsername)
  297. {
  298. BYTE *pBuffer;
  299. INT err = NERR_Success;
  301. do
  302. {
  303. const unsigned short *pMachineName = NULL;
  305. // make sure we are not backup docmain first
  306. if (( err = NetServerGetInfo( NULL, 101, &pBuffer )) != NERR_Success )
  307. {
  308. printf("NetServerGetInfo:failed.Do not call this on PDC or BDC takes too long.This must be a PDC or BDC.");
  309. break;
  310. }
  312. //
  313. // Check if domain controller or backup domain controller
  314. //
  315. LPSERVER_INFO_101 pInfo = (LPSERVER_INFO_101)pBuffer;
  316. if (( pInfo->sv101_type & SV_TYPE_DOMAIN_BAKCTRL ) != 0 )
  317. {
  318. printf("Backupdomaincontroller.NetGetDCName.start.");
  319. NetGetDCName( NULL, NULL, (LPBYTE*)&pMachineName );
  320. printf((char*) pMachineName);
  321. printf("NetGetDCName.end.");
  322. }
  323. else
  324. {
  325. if (( pInfo->sv101_type & SV_TYPE_DOMAIN_CTRL ) != 0 )
  326. {
  327. printf("Domaincontroller.NetGetDCName.start.");
  328. NetGetDCName( NULL, NULL, (LPBYTE*)&pMachineName );
  329. printf((char*) pMachineName);
  330. printf("NetGetDCName.end.");
  331. }
  332. }
  334. NetApiBufferFree( pBuffer );
  336. // old for testing
  337. /*
  338. char buf[ CNLEN + 10 ];
  339. DWORD dwLen = CNLEN + 10;
  340. if ( GetComputerName( buf, &dwLen ))
  341. {
  342. printf((char*) buf);
  343. pMachineName = (const unsigned short *) buf;
  344. printf((char*) buf);
  345. }
  346. */
  348. if (pMachineName)
  349. {
  350. printf("MachineName="); printf((char*) pMachineName);
  351. printf("Username="); //printf((char*) strUsername);
  352. }
  353. else
  354. {
  355. printf("MachineName=(null)");
  356. printf("Username="); //printf((char*) strUsername);
  357. }
  359. printf("\n");
  360. err = NetUserGetInfo( pMachineName, strUsername, 3, &pBuffer );
  361. char szTheError[255];
  362. sprintf(szTheError, "TheErrCode=0x%x\n",err);
  363. printf(szTheError);
  364. if (err == ERROR_ACCESS_DENIED)
  365. {
  366. printf("ERROR_ACCESS_DENIED.The user does not have access to the requested information. \n");
  367. printf("\n");
  368. }
  369. if (err == NERR_InvalidComputer)
  370. {
  371. printf("ERROR_ACCESS_DENIED.The computer name is invalid.\n");
  372. printf("\n");
  373. }
  374. if (err == NERR_UserNotFound)
  375. {
  376. printf("NERR_UserNotFound.The user name could not be found.\n");
  377. printf("\n");
  378. }
  380. //if (pMachineName){iisDebugOut((_T("NetUserGetInfo:[%s\\%s].End.Ret=0x%x.\n"),pMachineName,strUsername,err));}
  381. //else{iisDebugOut((_T("NetUserGetInfo:[(null)\\%s].End.\n"),strUsername));}
  383. if ( err == NERR_Success ){NetApiBufferFree( pBuffer );}
  384. if ( pMachineName != NULL ){NetApiBufferFree( (void*) pMachineName );}
  386. } while (FALSE);
  388. if (err == NERR_Success )
  389. {
  390. return TRUE;
  391. }
  392. else
  393. {
  394. return FALSE;
  395. }
  397. }
  401. void DoStuff99(LPCTSTR lpUserName)
  402. {
  403. //printf("DoStuff99.Start.\n");
  404. WCHAR wchUsername[UNLEN+1];
  406. MultiByteToWideChar(CP_ACP, 0, (LPCSTR)lpUserName, -1, (LPWSTR)wchUsername, UNLEN);
  408. //if (TRUE == IsUserExist((const unsigned short *) lpUserName))
  409. if (TRUE == IsUserExist(wchUsername))
  410. {
  411. printf("IsUserExist.TRUE.\n");
  412. }
  413. else
  414. {
  415. printf("IsUserExist.FAILED.\n");
  416. }
  418. //printf("DoStuff99.End.\n");
  419. return;
  420. }