archive
/
windows-xp
mirror of https://github.com/tongzx/nt5src
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Source code of Windows XP (NT5)
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
7 Commits
1 Branch
0 Tags
2.0 GiB
Tree: 1b390dddff
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '1b390dddff'
${ noResults }
windows-xp/Source/XPSP1/NT/ds/security/services/ca/certclib/logon.cpp

324 lines
8.1 KiB
Raw Normal View History

Add source files
4 years ago
  1. //+-------------------------------------------------------------------------
  2. //
  3. // Microsoft Windows
  4. //
  5. // Copyright (C) Microsoft Corporation, 1998 - 1999
  6. //
  7. // File: logon.cpp
  8. //
  9. //--------------------------------------------------------------------------
  11. /*++
  13. Copyright (c) 1995, 1996 Scott A. Field
  15. Module Name:
  17. logon.c
  19. Abstract:
  21. This module implements the network logon type by interfacing
  22. with the NT Lan Man Security Support Provider (NTLMSSP).
  24. If the logon succeds via the provided credentials, we duplicate
  25. the resultant Impersonation token to a Primary level token.
  26. This allows the result to be used in a call to CreateProcessAsUser
  28. Author:
  30. Scott Field (sfield) 09-Jun-96
  32. Revision History:
  34. --*/
  35. #include "pch.cpp"
  37. #pragma hdrstop
  38. #define SECURITY_WIN32
  42. #include <windows.h>
  44. #include <rpc.h>
  45. #include <security.h>
  48. BOOL
  49. myNetLogonUser(
  50. LPTSTR UserName,
  51. LPTSTR DomainName,
  52. LPTSTR Password,
  53. PHANDLE phToken
  54. )
  55. {
  56. SECURITY_STATUS SecStatus;
  57. CredHandle CredentialHandle1;
  58. CredHandle CredentialHandle2;
  60. CtxtHandle ClientContextHandle;
  61. CtxtHandle ServerContextHandle;
  62. SecPkgCredentials_Names sNames;
  64. ULONG ContextAttributes;
  66. ULONG PackageCount;
  67. ULONG PackageIndex;
  68. PSecPkgInfo PackageInfo;
  69. DWORD cbMaxToken;
  71. TimeStamp Lifetime;
  72. SEC_WINNT_AUTH_IDENTITY AuthIdentity;
  74. SecBufferDesc NegotiateDesc;
  75. SecBuffer NegotiateBuffer;
  77. SecBufferDesc ChallengeDesc;
  78. SecBuffer ChallengeBuffer;
  81. HANDLE hImpersonationToken;
  82. BOOL bSuccess = FALSE ; // assume this function will fail
  84. NegotiateBuffer.pvBuffer = NULL;
  85. ChallengeBuffer.pvBuffer = NULL;
  86. sNames.sUserName = NULL;
  87. ClientContextHandle.dwUpper = -1;
  88. ClientContextHandle.dwLower = -1;
  89. ServerContextHandle.dwUpper = -1;
  90. ServerContextHandle.dwLower = -1;
  91. CredentialHandle1.dwUpper = -1;
  92. CredentialHandle1.dwLower = -1;
  93. CredentialHandle2.dwUpper = -1;
  94. CredentialHandle2.dwLower = -1;
  97. //
  98. // << this section could be cached in a repeat caller scenario >>
  99. //
  101. //
  102. // Get info about the security packages.
  103. //
  105. if(EnumerateSecurityPackages(
  106. &PackageCount,
  107. &PackageInfo
  108. ) != NO_ERROR) return FALSE;
  110. //
  111. // loop through the packages looking for NTLM
  112. //
  114. for(PackageIndex = 0 ; PackageIndex < PackageCount ; PackageIndex++ ) {
  115. if(PackageInfo[PackageIndex].Name != NULL) {
  116. if(lstrcmpi(PackageInfo[PackageIndex].Name, MICROSOFT_KERBEROS_NAME) == 0) {
  117. cbMaxToken = PackageInfo[PackageIndex].cbMaxToken;
  118. bSuccess = TRUE;
  119. break;
  120. }
  121. }
  122. }
  124. FreeContextBuffer( PackageInfo );
  126. if(!bSuccess) return FALSE;
  128. bSuccess = FALSE; // reset to assume failure
  130. //
  131. // << end of cached section >>
  132. //
  134. //
  135. // Acquire a credential handle for the server side
  136. //
  138. SecStatus = AcquireCredentialsHandle(
  139. NULL, // New principal
  140. MICROSOFT_KERBEROS_NAME, // Package Name
  141. SECPKG_CRED_INBOUND,
  142. NULL,
  143. NULL,
  144. NULL,
  145. NULL,
  146. &CredentialHandle1,
  147. &Lifetime
  148. );
  150. if ( SecStatus != NO_ERROR ) {
  151. goto cleanup;
  152. }
  155. //
  156. // Acquire a credential handle for the client side
  157. //
  159. ZeroMemory( &AuthIdentity, sizeof(AuthIdentity) );
  161. if ( DomainName != NULL ) {
  162. AuthIdentity.Domain = DomainName;
  163. AuthIdentity.DomainLength = lstrlen(DomainName);
  164. }
  166. if ( UserName != NULL ) {
  167. AuthIdentity.User = UserName;
  168. AuthIdentity.UserLength = lstrlen(UserName);
  169. }
  171. if ( Password != NULL ) {
  172. AuthIdentity.Password = Password;
  173. AuthIdentity.PasswordLength = lstrlen(Password);
  174. }
  176. #ifdef UNICODE
  177. AuthIdentity.Flags = SEC_WINNT_AUTH_IDENTITY_UNICODE;
  178. #else
  179. AuthIdentity.Flags = SEC_WINNT_AUTH_IDENTITY_ANSI;
  180. #endif
  182. SecStatus = AcquireCredentialsHandle(
  183. NULL, // New principal
  184. MICROSOFT_KERBEROS_NAME, // Package Name
  185. SECPKG_CRED_OUTBOUND,
  186. NULL,
  187. (DomainName == NULL && UserName == NULL && Password == NULL) ?
  188. NULL : &AuthIdentity,
  189. NULL,
  190. NULL,
  191. &CredentialHandle2,
  192. &Lifetime
  193. );
  195. if ( SecStatus != NO_ERROR ) {
  196. goto cleanup;
  197. }
  199. SecStatus = QueryCredentialsAttributes(&CredentialHandle1, SECPKG_CRED_ATTR_NAMES, &sNames);
  200. if ( SecStatus != NO_ERROR ) {
  201. goto cleanup;
  202. }
  203. //
  204. // Get the NegotiateMessage (ClientSide)
  205. //
  207. NegotiateDesc.ulVersion = 0;
  208. NegotiateDesc.cBuffers = 1;
  209. NegotiateDesc.pBuffers = &NegotiateBuffer;
  211. NegotiateBuffer.cbBuffer = cbMaxToken;
  212. NegotiateBuffer.BufferType = SECBUFFER_TOKEN;
  213. NegotiateBuffer.pvBuffer = LocalAlloc( LMEM_FIXED, NegotiateBuffer.cbBuffer );
  215. if ( NegotiateBuffer.pvBuffer == NULL ) {
  216. goto cleanup;
  217. }
  219. SecStatus = InitializeSecurityContext(
  220. &CredentialHandle2,
  221. NULL, // No Client context yet
  222. sNames.sUserName, // target name
  223. ISC_REQ_SEQUENCE_DETECT,
  224. 0, // Reserved 1
  225. SECURITY_NATIVE_DREP,
  226. NULL, // No initial input token
  227. 0, // Reserved 2
  228. &ClientContextHandle,
  229. &NegotiateDesc,
  230. &ContextAttributes,
  231. &Lifetime
  232. );
  233. if(SecStatus != NO_ERROR)
  234. {
  235. goto cleanup;
  236. }
  239. //
  240. // Get the ChallengeMessage (ServerSide)
  241. //
  243. NegotiateBuffer.BufferType |= SECBUFFER_READONLY;
  244. ChallengeDesc.ulVersion = 0;
  245. ChallengeDesc.cBuffers = 1;
  246. ChallengeDesc.pBuffers = &ChallengeBuffer;
  248. ChallengeBuffer.cbBuffer = cbMaxToken;
  249. ChallengeBuffer.BufferType = SECBUFFER_TOKEN;
  250. ChallengeBuffer.pvBuffer = LocalAlloc( LMEM_FIXED, ChallengeBuffer.cbBuffer );
  252. if ( ChallengeBuffer.pvBuffer == NULL ) {
  253. goto cleanup;
  254. }
  256. SecStatus = AcceptSecurityContext(
  257. &CredentialHandle1,
  258. NULL, // No Server context yet
  259. &NegotiateDesc,
  260. ISC_REQ_SEQUENCE_DETECT,
  261. SECURITY_NATIVE_DREP,
  262. &ServerContextHandle,
  263. &ChallengeDesc,
  264. &ContextAttributes,
  265. &Lifetime
  266. );
  267. if(SecStatus != NO_ERROR)
  268. {
  269. goto cleanup;
  270. }
  273. if(QuerySecurityContextToken(&ServerContextHandle, phToken) != NO_ERROR)
  274. goto cleanup;
  276. bSuccess = TRUE;
  278. cleanup:
  280. //
  281. // Delete context
  282. //
  284. if((ClientContextHandle.dwUpper != -1) ||
  285. (ClientContextHandle.dwLower != -1))
  286. {
  287. DeleteSecurityContext( &ClientContextHandle );
  288. }
  289. if((ServerContextHandle.dwUpper != -1) ||
  290. (ServerContextHandle.dwLower != -1))
  291. {
  292. DeleteSecurityContext( &ServerContextHandle );
  293. }
  295. //
  296. // Free credential handles
  297. //
  298. if((CredentialHandle1.dwUpper != -1) ||
  299. (CredentialHandle1.dwLower != -1))
  300. {
  301. FreeCredentialsHandle( &CredentialHandle1 );
  302. }
  303. if((CredentialHandle2.dwUpper != -1) ||
  304. (CredentialHandle2.dwLower != -1))
  305. {
  306. FreeCredentialsHandle( &CredentialHandle2 );
  307. }
  309. if ( NegotiateBuffer.pvBuffer != NULL ) {
  310. ZeroMemory( NegotiateBuffer.pvBuffer, NegotiateBuffer.cbBuffer );
  311. LocalFree( NegotiateBuffer.pvBuffer );
  312. }
  314. if ( ChallengeBuffer.pvBuffer != NULL ) {
  315. ZeroMemory( ChallengeBuffer.pvBuffer, ChallengeBuffer.cbBuffer );
  316. LocalFree( ChallengeBuffer.pvBuffer );
  317. }
  319. if ( sNames.sUserName != NULL ) {
  320. FreeContextBuffer( sNames.sUserName );
  321. }
  323. return bSuccess;
  324. }