archive
/
windows-xp
mirror of https://github.com/tongzx/nt5src
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Source code of Windows XP (NT5)
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
7 Commits
1 Branch
0 Tags
2.0 GiB
Tree: 9769ad7c3d
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '9769ad7c3d'
${ noResults }
windows-xp/Source/XPSP1/NT/shell/ext/shgina/logonipc.cpp

515 lines
18 KiB
Raw Normal View History

Add source files
4 years ago
  1. // --------------------------------------------------------------------------
  2. // Module Name: LogonIPC.cpp
  3. //
  4. // Copyright (c) 1999, Microsoft Corporation
  5. //
  6. // Class that implements communication between an external process and the
  7. // GINA logon dialog.
  8. //
  9. // History: 1999-08-20 vtan created
  10. // 2000-01-31 vtan moved from Neptune to Whistler
  11. // --------------------------------------------------------------------------
  13. #include "priv.h"
  14. #include "limits.h"
  15. #include "LogonIPC.h"
  17. #include "GinaIPC.h"
  19. // --------------------------------------------------------------------------
  20. // CLogonIPC::CLogonIPC
  21. //
  22. // Arguments: <none>
  23. //
  24. // Returns: <none>
  25. //
  26. // Purpose: Initializes the CLogonIPC class.
  27. //
  28. // History: 1999-08-20 vtan created
  29. // --------------------------------------------------------------------------
  31. CLogonIPC::CLogonIPC (void) :
  32. _iLogonAttemptCount(0),
  33. _hwndLogonService(NULL)
  35. {
  36. }
  38. // --------------------------------------------------------------------------
  39. // CLogonIPC::~CLogonIPC
  40. //
  41. // Arguments: <none>
  42. //
  43. // Returns: <none>
  44. //
  45. // Purpose: Releases any resources used by the CLogonIPC class.
  46. //
  47. // History: 1999-08-20 vtan created
  48. // --------------------------------------------------------------------------
  50. CLogonIPC::~CLogonIPC (void)
  52. {
  53. }
  55. // --------------------------------------------------------------------------
  56. // CLogonIPC::IsLogonServiceAvailable
  57. //
  58. // Arguments: <none>
  59. //
  60. // Returns: bool = Presence or abscence.
  61. //
  62. // Purpose: Finds out if the window providing logon service in GINA is
  63. // available. The determination is not performed statically but
  64. // rather dynamically which allows this class to be hosted by
  65. // the actual window providing the service as well.
  66. //
  67. // History: 1999-08-20 vtan created
  68. // --------------------------------------------------------------------------
  70. bool CLogonIPC::IsLogonServiceAvailable (void)
  72. {
  73. _hwndLogonService = FindWindow(NULL, TEXT("GINA Logon"));
  74. return(_hwndLogonService != NULL);
  75. }
  77. // --------------------------------------------------------------------------
  78. // CLogonIPC::IsUserLoggedOn
  79. //
  80. // Arguments: pwszUsername = User name.
  81. // pwszDomain = User domain.
  82. //
  83. // Returns: bool = Presence or abscence.
  84. //
  85. // Purpose: Finds out if the given user is logged onto the system. You
  86. // may pass a NULL pwszDomain for the local machine.
  87. //
  88. // History: 1999-08-20 vtan created
  89. // --------------------------------------------------------------------------
  91. bool CLogonIPC::IsUserLoggedOn (const WCHAR *pwszUsername, const WCHAR *pwszDomain)
  93. {
  94. LOGONIPC_USERID logonIPCUserID;
  96. PackageIdentification(pwszUsername, pwszDomain, &logonIPCUserID);
  97. return(SendToLogonService(LOGON_QUERY_LOGGED_ON, &logonIPCUserID, sizeof(logonIPCUserID), true));
  98. }
  100. // --------------------------------------------------------------------------
  101. // CLogonIPC::LogUserOn
  102. //
  103. // Arguments: pwszUsername = User name.
  104. // pwszDomain = User domain.
  105. // pwszPassword = User password. This is passed clear text.
  106. // Once encoded the password buffer is
  107. // zeroed. This function owns the memory that
  108. // you pass in.
  109. //
  110. // Returns: bool = Success or failure.
  111. //
  112. // Purpose: Attempts to log the user with the given credentials onto the
  113. // system. The password buffer is owned by this function for the
  114. // purpose of clearing it once encoded. Failed logon attempts
  115. // cause a counter to be incremented and a subsequent delay using
  116. // that counter is done to slow dictionary attacks.
  117. //
  118. // History: 1999-08-20 vtan created
  119. // --------------------------------------------------------------------------
  121. bool CLogonIPC::LogUserOn (const WCHAR *pwszUsername, const WCHAR *pwszDomain, WCHAR *pwszPassword)
  123. {
  124. bool fResult;
  125. int iPasswordLength, iTruePasswordLength;
  126. UNICODE_STRING passwordString;
  127. LOGONIPC_CREDENTIALS logonIPCCredentials;
  129. PackageIdentification(pwszUsername, pwszDomain, &logonIPCCredentials.userID);
  131. // Limit the password to 127 characters. RtlRunEncodeUnicodeString
  132. // does not support strings greater than 127 characters.
  134. iTruePasswordLength = iPasswordLength = lstrlenW(pwszPassword);
  135. if (iPasswordLength > 127)
  136. {
  137. iPasswordLength = 127;
  138. }
  139. pwszPassword[iPasswordLength] = L'\0';
  140. lstrcpyW(logonIPCCredentials.wszPassword, pwszPassword);
  141. logonIPCCredentials.iPasswordLength = iPasswordLength;
  142. ZeroMemory(pwszPassword, (iTruePasswordLength + sizeof('\0')) * sizeof(WCHAR));
  143. logonIPCCredentials.ucPasswordSeed = static_cast<unsigned char>(GetTickCount());
  144. RtlInitUnicodeString(&passwordString, logonIPCCredentials.wszPassword);
  145. RtlRunEncodeUnicodeString(&logonIPCCredentials.ucPasswordSeed, &passwordString);
  146. fResult = SendToLogonService(LOGON_LOGON_USER, &logonIPCCredentials, sizeof(logonIPCCredentials), false);
  147. if (!fResult)
  148. {
  149. Sleep(_iLogonAttemptCount * 1000);
  150. if (_iLogonAttemptCount < 5)
  151. {
  152. ++_iLogonAttemptCount;
  153. }
  154. }
  155. return(fResult);
  156. }
  158. // --------------------------------------------------------------------------
  159. // CLogonIPC::LogUserOff
  160. //
  161. // Arguments: pwszUsername = User name.
  162. // pwszDomain = User domain.
  163. //
  164. // Returns: bool = Success or failure.
  165. //
  166. // Purpose: Attempts to log the given user off the system. This will fail
  167. // if they aren't logged on.
  168. //
  169. // History: 1999-08-20 vtan created
  170. // --------------------------------------------------------------------------
  172. bool CLogonIPC::LogUserOff (const WCHAR *pwszUsername, const WCHAR *pwszDomain)
  174. {
  175. LOGONIPC_USERID logonIPCUserID;
  177. PackageIdentification(pwszUsername, pwszDomain, &logonIPCUserID);
  178. return(SendToLogonService(LOGON_LOGOFF_USER, &logonIPCUserID, sizeof(logonIPCUserID), true));
  179. }
  181. // --------------------------------------------------------------------------
  182. // CLogonIPC::TestBlankPassword
  183. //
  184. // Arguments: pwszUsername = User name.
  185. // pwszDomain = User domain.
  186. //
  187. // Returns: bool = Success or failure.
  188. //
  189. // Purpose: Attempts to log the given user on the system with a blank
  190. // password. The token is then dump and failure/success returned.
  191. //
  192. // History: 2000-03-09 vtan created
  193. // --------------------------------------------------------------------------
  195. bool CLogonIPC::TestBlankPassword (const WCHAR *pwszUsername, const WCHAR *pwszDomain)
  197. {
  198. LOGONIPC_USERID logonIPCUserID;
  200. PackageIdentification(pwszUsername, pwszDomain, &logonIPCUserID);
  201. return(SendToLogonService(LOGON_TEST_BLANK_PASSWORD, &logonIPCUserID, sizeof(logonIPCUserID), true));
  202. }
  204. // --------------------------------------------------------------------------
  205. // CLogonIPC::TestInteractiveLogonAllowed
  206. //
  207. // Arguments: pwszUsername = User name.
  208. // pwszDomain = User domain.
  209. //
  210. // Returns: bool
  211. //
  212. // Purpose: Test whether the user has interactive logon rights to this
  213. // machine. The presence of SeDenyInteractiveLogonRight
  214. // determines this - NOT the presence of SeInteractiveLogonRight.
  215. //
  216. // History: 2000-08-15 vtan created
  217. // --------------------------------------------------------------------------
  219. bool CLogonIPC::TestInteractiveLogonAllowed (const WCHAR *pwszUsername, const WCHAR *pwszDomain)
  221. {
  222. LOGONIPC_USERID logonIPCUserID;
  224. PackageIdentification(pwszUsername, pwszDomain, &logonIPCUserID);
  225. return(SendToLogonService(LOGON_TEST_INTERACTIVE_LOGON_ALLOWED, &logonIPCUserID, sizeof(logonIPCUserID), true));
  226. }
  228. // --------------------------------------------------------------------------
  229. // CLogonIPC::TestEjectAllowed
  230. //
  231. // Arguments: <none>
  232. //
  233. // Returns: bool = Success or failure.
  234. //
  235. // Purpose: Tests whether the computer is ejectable (docked laptop).
  236. //
  237. // History: 2001-01-10 vtan created
  238. // --------------------------------------------------------------------------
  240. bool CLogonIPC::TestEjectAllowed (void)
  242. {
  243. LOGONIPC logonIPC;
  245. return(SendToLogonService(LOGON_TEST_EJECT_ALLOWED, &logonIPC, sizeof(logonIPC), true));
  246. }
  248. // --------------------------------------------------------------------------
  249. // CLogonIPC::TestShutdownAllowed
  250. //
  251. // Arguments: <none>
  252. //
  253. // Returns: bool = Success or failure.
  254. //
  255. // Purpose: Tests whether the computer can be shut down.
  256. //
  257. // History: 2001-02-22 vtan created
  258. // --------------------------------------------------------------------------
  260. bool CLogonIPC::TestShutdownAllowed (void)
  262. {
  263. LOGONIPC logonIPC;
  265. return(SendToLogonService(LOGON_TEST_SHUTDOWN_ALLOWED, &logonIPC, sizeof(logonIPC), true));
  266. }
  268. // --------------------------------------------------------------------------
  269. // CLogonIPC::TurnOffComputer
  270. //
  271. // Arguments: <none>
  272. //
  273. // Returns: bool = Success or failure.
  274. //
  275. // Purpose: Brings up the "Turn Off Computer" dialog and allows the user
  276. // to choose what to do.
  277. //
  278. // History: 2000-04-20 vtan created
  279. // --------------------------------------------------------------------------
  281. bool CLogonIPC::TurnOffComputer (void)
  283. {
  284. LOGONIPC logonIPC;
  286. return(SendToLogonService(LOGON_TURN_OFF_COMPUTER, &logonIPC, sizeof(logonIPC), false));
  287. }
  289. // --------------------------------------------------------------------------
  290. // CLogonIPC::EjectComputer
  291. //
  292. // Arguments: <none>
  293. //
  294. // Returns: bool = Success or failure.
  295. //
  296. // Purpose: Ejects the computer (docked laptop).
  297. //
  298. // History: 2001-01-10 vtan created
  299. // --------------------------------------------------------------------------
  301. bool CLogonIPC::EjectComputer (void)
  303. {
  304. LOGONIPC logonIPC;
  306. return(SendToLogonService(LOGON_EJECT_COMPUTER, &logonIPC, sizeof(logonIPC), true));
  307. }
  309. // --------------------------------------------------------------------------
  310. // CLogonIPC::SignalUIHostFailure
  311. //
  312. // Arguments: <none>
  313. //
  314. // Returns: bool
  315. //
  316. // Purpose: Called when the UI host has an error that it cannot recover
  317. // from. This signals msgina to fall back to classic mode.
  318. //
  319. // History: 2000-03-09 vtan created
  320. // --------------------------------------------------------------------------
  322. bool CLogonIPC::SignalUIHostFailure (void)
  324. {
  325. LOGONIPC logonIPC;
  327. return(SendToLogonService(LOGON_SIGNAL_UIHOST_FAILURE, &logonIPC, sizeof(logonIPC), true));
  328. }
  330. // --------------------------------------------------------------------------
  331. // CLogonIPC::AllowExternalCredentials
  332. //
  333. // Arguments: <none>
  334. //
  335. // Returns: bool = Success or failure.
  336. //
  337. // Purpose:
  338. //
  339. // History: 2000-06-26 vtan created
  340. // --------------------------------------------------------------------------
  342. bool CLogonIPC::AllowExternalCredentials (void)
  344. {
  345. LOGONIPC logonIPC;
  347. return(SendToLogonService(LOGON_ALLOW_EXTERNAL_CREDENTIALS, &logonIPC, sizeof(logonIPC), true));
  348. }
  350. // --------------------------------------------------------------------------
  351. // CLogonIPC::RequestExternalCredentials
  352. //
  353. // Arguments: <none>
  354. //
  355. // Returns: bool
  356. //
  357. // Purpose:
  358. //
  359. // History: 2000-06-26 vtan created
  360. // --------------------------------------------------------------------------
  362. bool CLogonIPC::RequestExternalCredentials (void)
  364. {
  365. LOGONIPC logonIPC;
  367. return(SendToLogonService(LOGON_REQUEST_EXTERNAL_CREDENTIALS, &logonIPC, sizeof(logonIPC), true));
  368. }
  370. // --------------------------------------------------------------------------
  371. // CLogonIPC::PackageIdentification
  372. //
  373. // Arguments: pwszUsername = User name.
  374. // pwszDomain = User domain.
  375. // pIdentification = Pointer to a LOGONIPC_USERID struct
  376. // which is masked as void* to allow
  377. // LogonIPC.h to not expose this detail.
  378. //
  379. // Returns: <none>
  380. //
  381. // Purpose: Takes the user name and domain and packages them into the
  382. // given struct. If no domain is given the a zero length string
  383. // is used which indicates to the logon service provider that
  384. // the local machine is desired.
  385. //
  386. // Now parses the user name given. If the user has "\" then it
  387. // is assumed to be of the form "DOMAIN\USER". If the user has
  388. // "@" then it is assumed to be a UPN name.
  389. //
  390. // History: 1999-08-20 vtan created
  391. // 2000-06-27 vtan added UPN and DOMAIN parsing support
  392. // --------------------------------------------------------------------------
  394. void CLogonIPC::PackageIdentification (const WCHAR *pwszUsername, const WCHAR *pwszDomain, void *pIdentification)
  396. {
  397. bool fDone;
  398. int i, iStringLength;
  399. LOGONIPC_USERID *pLogonIPCUserID;
  401. pLogonIPCUserID = reinterpret_cast<LOGONIPC_USERID*>(pIdentification);
  402. iStringLength = lstrlen(pwszUsername);
  403. for (fDone = false, i = 0; !fDone && (i < iStringLength); ++i)
  404. {
  405. if (pwszUsername[i] == L'\\')
  406. {
  407. lstrcpynW(pLogonIPCUserID->wszDomain, pwszUsername, ARRAYSIZE(pLogonIPCUserID->wszDomain));
  408. pLogonIPCUserID->wszDomain[i] = L'\0';
  409. ++i;
  410. lstrcpynW(pLogonIPCUserID->wszUsername, pwszUsername + i, ARRAYSIZE(pLogonIPCUserID->wszUsername));
  411. fDone = true;
  412. }
  413. else if (pwszUsername[i] == L'@')
  414. {
  415. lstrcpynW(pLogonIPCUserID->wszUsername, pwszUsername, ARRAYSIZE(pLogonIPCUserID->wszUsername));
  416. pLogonIPCUserID->wszDomain[0] = L'\0';
  417. fDone = true;
  418. }
  419. }
  420. if (!fDone)
  421. {
  422. lstrcpyW(pLogonIPCUserID->wszUsername, pwszUsername);
  423. if (pwszDomain != NULL)
  424. {
  425. lstrcpyW(pLogonIPCUserID->wszDomain, pwszDomain);
  426. }
  427. else
  428. {
  429. pLogonIPCUserID->wszDomain[0] = L'\0';
  430. }
  431. }
  432. }
  434. // --------------------------------------------------------------------------
  435. // CLogonIPC::SendToLogonService
  436. //
  437. // Arguments: wQueryType = What type of service we are interested in.
  438. // pData = Pointer to the data.
  439. // wDataSize = Size of the data.
  440. // fBlock = Block message pump or not.
  441. //
  442. // Returns: bool = Success or failure.
  443. //
  444. // Purpose: Takes the package data and sends the message to the logon
  445. // service provider and receives the result. The logon service
  446. // provider started this process and reads this process' memory
  447. // directly (like a debugger would).
  448. //
  449. // This function should block the message pump because if it
  450. // processes another state change message while waiting for a
  451. // response it could destroy data.
  452. //
  453. // History: 1999-08-20 vtan created
  454. // 2001-06-22 vtan changed to SendMessageTimeout
  455. // 2001-06-28 vtan added block parameter
  456. // --------------------------------------------------------------------------
  458. bool CLogonIPC::SendToLogonService (WORD wQueryType, void *pData, WORD wDataSize, bool fBlock)
  460. {
  461. bool fResult;
  463. fResult = IsLogonServiceAvailable();
  464. if (fResult)
  465. {
  466. DWORD_PTR dwResult;
  468. reinterpret_cast<LOGONIPC*>(pData)->fResult = false;
  470. // WARNING: Danger Will Robinson.
  472. // Do NOT change INT_MAX to INFINITE. INT_MAX is a SIGNED number.
  473. // INFINITE is an UNSIGNED number. Despite the SDK and prototype
  474. // of SendMessageTimeout this timeout value is a SIGNED number.
  475. // Passing in an unsigned number causes the timeout to be
  476. // ignored and the function returns with a timeout.
  478. (LRESULT)SendMessageTimeout(_hwndLogonService,
  479. WM_LOGONSERVICEREQUEST,
  480. MAKEWPARAM(wDataSize, wQueryType),
  481. reinterpret_cast<LPARAM>(pData),
  482. fBlock ? SMTO_BLOCK : SMTO_NORMAL,
  483. INT_MAX, // See above warning.
  484. &dwResult);
  485. fResult = (reinterpret_cast<LOGONIPC*>(pData)->fResult != FALSE);
  486. }
  487. return(fResult);
  488. }
  490. // --------------------------------------------------------------------------
  491. // CLogonIPC::PostToLogonService
  492. //
  493. // Arguments: wQueryType = What type of service we are interested in.
  494. // pData = Pointer to the data.
  495. // wDataSize = Size of the data.
  496. //
  497. // Returns: <none>
  498. //
  499. // Purpose: Takes the package data and posts the message to the logon
  500. // service provider and receives the result. The logon service
  501. // provider started this process and reads this process' memory
  502. // directly (like a debugger would).
  503. //
  504. // History: 1999-11-26 vtan created
  505. // --------------------------------------------------------------------------
  507. void CLogonIPC::PostToLogonService (WORD wQueryType, void *pData, WORD wDataSize)
  509. {
  510. if (IsLogonServiceAvailable())
  511. {
  512. TBOOL(PostMessage(_hwndLogonService, WM_LOGONSERVICEREQUEST, MAKEWPARAM(wDataSize, wQueryType), reinterpret_cast<LPARAM>(pData)));
  513. }
  514. }