archive
/
windows-xp
mirror of https://github.com/tongzx/nt5src
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Source code of Windows XP (NT5)
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
9 Commits
1 Branch
0 Tags
2.0 GiB
Tree: 75c48ba87f
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '75c48ba87f'
${ noResults }
windows-xp/Source/XPSP1/NT/inetsrv/iis/setup/osrc/setpass.cpp

313 lines
7.3 KiB
Raw Normal View History

Add source files
4 years ago
  1. #include "stdafx.h"
  2. #include "setpass.h"
  4. #ifndef _CHICAGO_
  6. #include "inetinfo.h"
  7. #include "inetcom.h"
  9. //
  10. // Quick macro to initialize a unicode string
  11. //
  13. #define InitUnicodeString( pUnicode, pwch ) \
  14. { \
  15. (pUnicode)->Buffer = (PWCH)pwch; \
  16. (pUnicode)->Length = (pwch == NULL )? 0: (wcslen( pwch ) * sizeof(WCHAR)); \
  17. (pUnicode)->MaximumLength = (pUnicode)->Length + sizeof(WCHAR);\
  18. }
  20. BOOL GetSecret(
  21. IN LPCTSTR pszSecretName,
  22. OUT BUFFER * pbufSecret
  23. )
  24. /*++
  25. Description:
  27. Retrieves the specified unicode secret
  29. Arguments:
  31. pszSecretName - LSA Secret to retrieve
  32. pbufSecret - Receives found secret
  34. Returns:
  35. TRUE on success and FALSE if any failure.
  37. --*/
  38. {
  39. BOOL fResult;
  40. NTSTATUS ntStatus;
  41. PUNICODE_STRING punicodePassword = NULL;
  42. UNICODE_STRING unicodeSecret;
  43. LSA_HANDLE hPolicy;
  44. OBJECT_ATTRIBUTES ObjectAttributes;
  45. WCHAR wszSecretName[_MAX_PATH];
  47. #if defined(UNICODE) || defined(_UNICODE)
  48. _tcscpy(wszSecretName, pszSecretName);
  49. #else
  50. MultiByteToWideChar(CP_ACP, 0, (LPCSTR)pszSecretName, -1, (LPWSTR)wszSecretName, _MAX_PATH);
  51. #endif
  53. //
  54. // Open a policy to the remote LSA
  55. //
  57. InitializeObjectAttributes( &ObjectAttributes,
  58. NULL,
  59. 0L,
  60. NULL,
  61. NULL );
  63. ntStatus = LsaOpenPolicy( NULL,
  64. &ObjectAttributes,
  65. POLICY_ALL_ACCESS,
  66. &hPolicy );
  68. if ( !NT_SUCCESS( ntStatus ) )
  69. {
  70. SetLastError( LsaNtStatusToWinError( ntStatus ) );
  71. return FALSE;
  72. }
  74. InitUnicodeString( &unicodeSecret, wszSecretName );
  76. //
  77. // Query the secret value.
  78. //
  80. ntStatus = LsaRetrievePrivateData( hPolicy,
  81. &unicodeSecret,
  82. &punicodePassword );
  84. if( NT_SUCCESS(ntStatus) && (NULL !=punicodePassword))
  85. {
  86. DWORD cbNeeded;
  88. cbNeeded = punicodePassword->Length + sizeof(WCHAR);
  90. if ( !pbufSecret->Resize( cbNeeded ) )
  91. {
  92. ntStatus = STATUS_NO_MEMORY;
  93. goto Failure;
  94. }
  96. memcpy( pbufSecret->QueryPtr(),
  97. punicodePassword->Buffer,
  98. punicodePassword->Length );
  100. *((WCHAR *) pbufSecret->QueryPtr() +
  101. punicodePassword->Length / sizeof(WCHAR)) = L'\0';
  103. RtlZeroMemory( punicodePassword->Buffer,
  104. punicodePassword->MaximumLength );
  105. }
  107. Failure:
  109. fResult = NT_SUCCESS(ntStatus);
  111. //
  112. // Cleanup & exit.
  113. //
  115. if( punicodePassword != NULL )
  116. {
  117. LsaFreeMemory( (PVOID)punicodePassword );
  118. }
  120. LsaClose( hPolicy );
  122. if ( !fResult )
  123. SetLastError( LsaNtStatusToWinError( ntStatus ));
  125. return fResult;
  127. }
  129. BOOL GetAnonymousSecret(
  130. IN LPCTSTR pszSecretName,
  131. OUT LPTSTR pszPassword
  132. )
  133. {
  134. BUFFER * pbufSecret = NULL;
  135. LPWSTR pwsz = NULL;
  137. pbufSecret = new BUFFER();
  138. if (pbufSecret)
  139. {
  140. if ( !GetSecret( pszSecretName, pbufSecret ))
  141. return FALSE;
  143. pwsz = (WCHAR *) pbufSecret->QueryPtr();
  145. if (pwsz)
  146. {
  147. #if defined(UNICODE) || defined(_UNICODE)
  148. _tcscpy(pszPassword, pwsz);
  149. #else
  150. WideCharToMultiByte( CP_ACP, 0, pwsz, -1, pszPassword, _MAX_PATH, NULL, NULL );
  151. #endif
  152. }
  154. delete(pbufSecret);
  155. pbufSecret = NULL;
  156. }
  158. return TRUE;
  159. }
  161. BOOL GetRootSecret(
  162. IN LPCTSTR pszRoot,
  163. IN LPCTSTR pszSecretName,
  164. OUT LPTSTR pszPassword
  165. )
  166. /*++
  167. Description:
  169. This function retrieves the password for the specified root & address
  171. Arguments:
  173. pszRoot - Name of root + address in the form "/root,<address>".
  174. pszSecretName - Virtual Root password secret name
  175. pszPassword - Receives password, must be at least PWLEN+1 characters
  177. Returns:
  178. TRUE on success and FALSE if any failure.
  180. --*/
  181. {
  182. BUFFER * pbufSecret = NULL;
  183. LPWSTR pwsz;
  184. LPWSTR pwszTerm;
  185. LPWSTR pwszNextLine;
  186. WCHAR wszRoot[_MAX_PATH];
  188. pbufSecret = new BUFFER();
  189. if (pbufSecret)
  190. {
  192. if ( !GetSecret( pszSecretName, pbufSecret ))
  193. return FALSE;
  195. pwsz = (WCHAR *) pbufSecret->QueryPtr();
  197. //
  198. // Scan the list of roots looking for a match. The list looks like:
  199. //
  200. // <root>,<address>=<password>\0
  201. // <root>,<address>=<password>\0
  202. // \0
  203. //
  205. #if defined(UNICODE) || defined(_UNICODE)
  206. _tcscpy(wszRoot, pszRoot);
  207. #else
  208. MultiByteToWideChar(CP_ACP, 0, (LPCSTR)pszRoot, -1, (LPWSTR)wszRoot, _MAX_PATH);
  209. #endif
  211. while ( *pwsz )
  212. {
  213. pwszNextLine = pwsz + wcslen(pwsz) + 1;
  215. pwszTerm = wcschr( pwsz, L'=' );
  217. if ( !pwszTerm )
  218. goto NextLine;
  220. *pwszTerm = L'\0';
  222. if ( !_wcsicmp( wszRoot, pwsz ) )
  223. {
  224. DWORD cch;
  226. //
  227. // We found a match, copy the password
  228. //
  230. #if defined(UNICODE) || defined(_UNICODE)
  231. _tcscpy(pszPassword, pwszTerm+1);
  232. #else
  233. cch = WideCharToMultiByte( CP_ACP,
  234. WC_COMPOSITECHECK,
  235. pwszTerm + 1,
  236. -1,
  237. pszPassword,
  238. PWLEN + sizeof(CHAR),
  239. NULL,
  240. NULL );
  241. pszPassword[cch] = '\0';
  242. #endif
  243. return TRUE;
  244. }
  246. NextLine:
  247. pwsz = pwszNextLine;
  248. }
  250. //
  251. // If the matching root wasn't found, default to the empty password
  252. //
  254. *pszPassword = _T('\0');
  255. }
  257. if (pbufSecret)
  258. {
  259. delete(pbufSecret);
  260. pbufSecret = NULL;
  261. }
  262. return TRUE;
  263. }
  266. //
  267. // Saves password in LSA private data (LSA Secret).
  268. //
  269. DWORD SetSecret(IN LPCTSTR pszKeyName,IN LPCTSTR pszPassword)
  270. {
  271. DWORD dwError = E_FAIL;
  272. LSA_HANDLE hPolicy = NULL;
  274. try
  275. {
  276. LSA_OBJECT_ATTRIBUTES lsaoa = { sizeof(LSA_OBJECT_ATTRIBUTES), NULL, NULL, 0, NULL, NULL };
  278. dwError = LsaNtStatusToWinError(LsaOpenPolicy(NULL, &lsaoa, POLICY_CREATE_SECRET, &hPolicy));
  279. if (dwError != ERROR_SUCCESS)
  280. {
  281. dwError = HRESULT_FROM_WIN32(dwError);
  282. goto SetSecret_Exit;
  283. }
  285. USHORT usPasswordLength = wcslen(pszPassword) * sizeof(WCHAR);
  286. USHORT usKeyNameLength = wcslen(pszKeyName) * sizeof(WCHAR);
  288. LSA_UNICODE_STRING lsausKeyName = { usKeyNameLength, usKeyNameLength, const_cast<PWSTR>(pszKeyName) };
  289. LSA_UNICODE_STRING lsausPrivateData = { usPasswordLength, usPasswordLength, const_cast<PWSTR>(pszPassword) };
  291. dwError = LsaNtStatusToWinError(LsaStorePrivateData(hPolicy, &lsausKeyName, &lsausPrivateData));
  292. if (dwError != ERROR_SUCCESS)
  293. {
  294. dwError = HRESULT_FROM_WIN32(dwError);
  295. goto SetSecret_Exit;
  296. }
  298. LsaClose(hPolicy);
  299. }
  300. catch (...)
  301. {
  302. if (hPolicy)
  303. {
  304. LsaClose(hPolicy);
  305. }
  307. //throw;
  308. }
  309. SetSecret_Exit:
  310. return dwError;
  311. }
  313. #endif //_CHICAGO_