archive
/
windows-xp
mirror of https://github.com/tongzx/nt5src
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Source code of Windows XP (NT5)
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
7 Commits
1 Branch
0 Tags
2.0 GiB
Tree: 9769ad7c3d
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '9769ad7c3d'
${ noResults }
windows-xp/Source/XPSP1/NT/net/ias/providers/ntuser/names/ntsamnames.cpp

371 lines
11 KiB
Raw Normal View History

Add source files
4 years ago
  1. ///////////////////////////////////////////////////////////////////////////////
  2. //
  3. // Copyright (c) 1998, Microsoft Corp. All rights reserved.
  4. //
  5. // FILE
  6. //
  7. // NTSamNames.cpp
  8. //
  9. // SYNOPSIS
  10. //
  11. // This file defines the class NTSamNames.
  12. //
  13. // MODIFICATION HISTORY
  14. //
  15. // 04/13/1998 Original version.
  16. // 04/25/1998 Reject non-local users under WKS or stand-alone SRV.
  17. // 07/22/1998 Don't abort non-local users.
  18. // 08/21/1998 Trace/error improvements.
  19. // 09/08/1998 Added realm stripping.
  20. // 09/10/1998 Remove localOnly flag.
  21. // 09/16/1998 Apply all realm stripping rules.
  22. // 10/22/1998 Allow more name types.
  23. // 01/20/1999 Add support for DNIS/ANI/Guest.
  24. // 02/18/1999 Move registry values.
  25. // 03/19/1999 Add new realms support & overrideUsername flag.
  26. // 01/25/2000 Leave stripped username on the heap.
  27. // 02/15/2000 Remove realms support.
  28. //
  29. ///////////////////////////////////////////////////////////////////////////////
  31. #include <ias.h>
  32. #include <iaslsa.h>
  34. #include <memory>
  36. #include <sdoias.h>
  38. #include <samutil.h>
  39. #include <ntsamnames.h>
  40. #include <varvec.h>
  42. /////////
  43. // Registry keys and values.
  44. /////////
  45. const WCHAR PARAMETERS_KEY[] =
  46. L"SYSTEM\\CurrentControlSet\\Services\\RemoteAccess\\Policy";
  48. const WCHAR IDENTITY_ATTR_VALUE[] = L"User Identity Attribute";
  49. const WCHAR DEFAULT_IDENTITY_VALUE[] = L"Default User Identity";
  50. const WCHAR OVERRIDE_USERNAME_VALUE[] = L"Override User-Name";
  52. //////////
  53. // Determines whether an identity can be cracked through DsCrackNames.
  54. //////////
  55. inline BOOL isCrackable(PCWSTR szIdentity) throw ()
  56. {
  57. return wcschr(szIdentity, L'@') || // DS_USER_PRINCIPAL_NAME
  58. wcschr(szIdentity, L'=') || // DS_FQDN_1779_NAME
  59. wcschr(szIdentity, L'/') ; // DS_CANONICAL_NAME
  60. }
  62. STDMETHODIMP NTSamNames::Initialize()
  63. {
  64. // Initialize the LSA API.
  65. DWORD error = IASLsaInitialize();
  66. if (error) { return HRESULT_FROM_WIN32(error); }
  68. LONG status;
  69. DWORD cbData, type;
  71. // Open the Parameters registry key.
  72. HKEY hKey;
  73. status = RegOpenKeyW(
  74. HKEY_LOCAL_MACHINE,
  75. PARAMETERS_KEY,
  76. &hKey
  77. );
  78. if (status == NO_ERROR)
  79. {
  80. // Query the Identity Attribute.
  81. DWORD cbData = sizeof(DWORD);
  82. status = RegQueryValueExW(
  83. hKey,
  84. IDENTITY_ATTR_VALUE,
  85. NULL,
  86. &type,
  87. (LPBYTE)&identityAttr,
  88. &cbData
  89. );
  91. // If we didn't successfully read a DWORD, set to default.
  92. if (status != NO_ERROR || type != REG_DWORD || cbData != sizeof(DWORD))
  93. {
  94. identityAttr = RADIUS_ATTRIBUTE_USER_NAME;
  95. }
  97. // Query the Override User-Name flag.
  98. cbData = sizeof(DWORD);
  99. status = RegQueryValueExW(
  100. hKey,
  101. OVERRIDE_USERNAME_VALUE,
  102. NULL,
  103. &type,
  104. (LPBYTE)&overrideUsername,
  105. &cbData
  106. );
  108. // If we didn't successfully read a DWORD, set to default.
  109. if (status != NO_ERROR || type != REG_DWORD || cbData != sizeof(DWORD))
  110. {
  111. overrideUsername = FALSE;
  112. }
  114. // Query the length of the Default Identity.
  115. defaultLength = 0;
  116. status = RegQueryValueExW(
  117. hKey,
  118. DEFAULT_IDENTITY_VALUE,
  119. NULL,
  120. &type,
  121. NULL,
  122. &defaultLength
  123. );
  124. if (status == NO_ERROR &&
  125. type == REG_SZ &&
  126. defaultLength > 2 * sizeof(WCHAR))
  127. {
  128. // Allocate memory to hold the Default Identity.
  129. defaultIdentity = new (std::nothrow)
  130. WCHAR[defaultLength / sizeof(WCHAR)];
  131. if (defaultIdentity)
  132. {
  133. // Query the value of the Default Identity.
  134. status = RegQueryValueExW(
  135. hKey,
  136. DEFAULT_IDENTITY_VALUE,
  137. NULL,
  138. &type,
  139. (LPBYTE)defaultIdentity,
  140. &defaultLength
  141. );
  142. if (status != NO_ERROR ||
  143. type != REG_SZ ||
  144. defaultLength < 2 * sizeof(WCHAR))
  145. {
  146. delete[] defaultIdentity;
  147. defaultIdentity = NULL;
  148. defaultLength = 0;
  149. }
  150. }
  151. }
  153. RegCloseKey(hKey);
  154. }
  156. IASTracePrintf("User identity attribute: %lu", identityAttr);
  157. IASTracePrintf("Override User-Name: %s",
  158. overrideUsername ? "TRUE" : "FALSE");
  159. IASTracePrintf("Default user identity: %S",
  160. (defaultIdentity ? defaultIdentity : L"<Guest>"));
  162. // Small optimization.
  163. if (identityAttr == RADIUS_ATTRIBUTE_USER_NAME) { overrideUsername = TRUE; }
  165. return S_OK;
  166. }
  168. STDMETHODIMP NTSamNames::Shutdown()
  169. {
  170. IASLsaUninitialize();
  172. delete[] defaultIdentity;
  173. defaultIdentity = NULL;
  174. defaultLength = 0;
  176. return S_OK;
  177. }
  179. IASREQUESTSTATUS NTSamNames::onSyncRequest(IRequest* pRequest) throw ()
  180. {
  181. // I had to stick this at function scope, so it can be freed in
  182. // the catch block.
  183. PDS_NAME_RESULTW result = NULL;
  185. try
  186. {
  187. IASRequest request(pRequest);
  189. WCHAR name[DNLEN + UNLEN + 2], *identity;
  191. // Get the identity attribute.
  192. IASAttribute attr;
  193. if (overrideUsername ||
  194. !attr.load(request, RADIUS_ATTRIBUTE_USER_NAME, IASTYPE_OCTET_STRING))
  195. {
  196. attr.load(request, identityAttr, IASTYPE_OCTET_STRING);
  197. }
  199. if (attr != NULL && attr->Value.OctetString.dwLength != 0)
  200. {
  201. // Convert it to a UNICODE string.
  202. identity = IAS_OCT2WIDE(attr->Value.OctetString);
  204. IASTracePrintf(
  205. "NT-SAM Names handler received request with user identity %S.",
  206. identity
  207. );
  209. }
  210. else
  211. {
  212. // No identity attribute.
  214. if (defaultIdentity)
  215. {
  216. // Use the default identity if set.
  217. identity = defaultIdentity;
  218. }
  219. else
  220. {
  221. // Otherwise use the guest account for the default domain.
  222. IASGetGuestAccountName(identity = name);
  223. }
  225. IASTracePrintf(
  226. "NT-SAM Names handler using default user identity %S.",
  227. identity
  228. );
  229. }
  231. // Allocate an attribute to hold the NT4 Account Name.
  232. IASAttribute nt4Name(true);
  233. nt4Name->dwId = IAS_ATTRIBUTE_NT4_ACCOUNT_NAME;
  235. // (1) If it already contains a backslash, then use as is.
  236. PWCHAR delim = wcschr(identity, L'\\');
  237. if (delim)
  238. {
  239. if (IASGetRole() == IAS_ROLE_STANDALONE ||
  240. IASGetProductType() == IAS_PRODUCT_WORKSTATION)
  241. {
  242. // Strip out the domain.
  243. *delim = L'\0';
  245. // Make sure this is a local user.
  246. if (!IASIsDomainLocal(identity))
  247. {
  248. IASTraceString("Non-local users are not allowed -- rejecting.");
  250. return IASProcessFailure(request, IAS_LOCAL_USERS_ONLY);
  251. }
  253. // Restore the delimiter.
  254. *delim = L'\\';
  255. }
  257. IASTraceString("Username is already an NT4 account name.");
  259. nt4Name.setString(identity);
  260. }
  262. // (2) If we're stand-alone, then we don't support DsCrackNames.
  263. // (3) If it doesn't look crackable, then don't waste the network I/O.
  264. else if (IASGetRole() == IAS_ROLE_STANDALONE || !isCrackable(identity))
  265. {
  266. IASTraceString("Prepending default domain.");
  268. nt4Name->Value.String.pszWide = prependDefaultDomain(identity);
  269. nt4Name->Value.String.pszAnsi = NULL;
  270. nt4Name->Value.itType = IASTYPE_STRING;
  271. }
  273. else
  274. {
  275. // (4) Call DsCrackNames.
  276. DWORD dwErr = cracker.crackNames(
  277. DS_NAME_FLAG_EVAL_AT_DC,
  278. DS_UNKNOWN_NAME,
  279. DS_NT4_ACCOUNT_NAME,
  280. identity,
  281. &result
  282. );
  284. if (dwErr != NO_ERROR)
  285. {
  286. IASTraceFailure("DsCrackNames", dwErr);
  287. return IASProcessFailure(request, IAS_GLOBAL_CATALOG_UNAVAILABLE);
  288. }
  290. if (result->rItems->status == DS_NAME_NO_ERROR)
  291. {
  292. IASTraceString("Successfully cracked username.");
  294. // (5) DsCrackNames returned an NT4 Account Name, so use it.
  295. nt4Name.setString(result->rItems->pName);
  296. }
  297. else
  298. {
  299. IASTraceString("Global Catalog could not crack username; "
  300. "prepending default domain.");
  302. // (6) If it can't be cracked we'll assume that it's a flat
  303. // username with some weird characters.
  304. nt4Name->Value.String.pszWide = prependDefaultDomain(identity);
  305. nt4Name->Value.String.pszAnsi = NULL;
  306. nt4Name->Value.itType = IASTYPE_STRING;
  307. }
  309. cracker.freeNameResult(result);
  310. }
  312. // Convert the domain name to uppercase.
  313. delim = wcschr(nt4Name->Value.String.pszWide, L'\\');
  314. *delim = L'\0';
  315. _wcsupr(nt4Name->Value.String.pszWide);
  316. *delim = L'\\';
  318. nt4Name.store(request);
  320. // For now, we'll use this as the FQDN as well.
  321. IASStoreFQUserName(
  322. request,
  323. DS_NT4_ACCOUNT_NAME,
  324. nt4Name->Value.String.pszWide
  325. );
  327. IASTracePrintf("SAM-Account-Name is \"%S\".",
  328. nt4Name->Value.String.pszWide);
  329. }
  330. catch (const _com_error& ce)
  331. {
  332. IASTraceExcept();
  334. if (result) { cracker.freeNameResult(result); }
  336. return IASProcessFailure(pRequest, ce.Error());
  337. }
  339. return IAS_REQUEST_STATUS_HANDLED;
  340. }
  342. PWSTR NTSamNames::prependDefaultDomain(PCWSTR username)
  343. {
  344. _ASSERT(username != NULL);
  346. // Figure out how long everything is.
  347. PCWSTR domain = IASGetDefaultDomain();
  348. ULONG domainLen = wcslen(domain);
  349. ULONG usernameLen = wcslen(username) + 1;
  351. // Allocate the needed memory.
  352. ULONG needed = domainLen + usernameLen + 1;
  353. PWSTR retval = (PWSTR)CoTaskMemAlloc(needed * sizeof(WCHAR));
  354. if (!retval) { _com_issue_error(E_OUTOFMEMORY); }
  356. // Set up the cursor used for packing the strings.
  357. PWSTR dst = retval;
  359. // Copy in the domain name.
  360. memcpy(dst, domain, domainLen * sizeof(WCHAR));
  361. dst += domainLen;
  363. // Add the delimiter.
  364. *dst++ = L'\\';
  366. // Copy in the username.
  367. // Note: usernameLen includes the null-terminator.
  368. memcpy(dst, username, usernameLen * sizeof(WCHAR));
  370. return retval;
  371. }