// --------------------------------------------------------------------------
// Module Name: BioLogon.cpp
//
// Copyright (c) 2001, Microsoft Corporation
//
// File that implements a publicly declared import that forwards to an
// implementation in shgina.dll
//
// History: 2001-04-10 vtan created
// --------------------------------------------------------------------------
#include <nt.h>
#include <ntrtl.h>
#include <nturtl.h>
#include <ntlsa.h>
#include <ntmsv1_0.h>
#include <windows.h>
HANDLE g_hLSA = NULL;
// --------------------------------------------------------------------------
// CheckTCBPrivilege
//
// Arguments: <none>
//
// Returns: BOOL
//
// Purpose: Returns whether the thread impersonation token or the process
// level token has SE_TCB_PRIVILEGE.
//
// History: 2001-06-04 vtan created
// --------------------------------------------------------------------------
BOOL CheckTCBPrivilege (void)
{
BOOL fResult;
HANDLE hToken;
fResult = FALSE;
if (OpenThreadToken(GetCurrentThread(), TOKEN_QUERY, FALSE, &hToken) == FALSE)
{
if (OpenProcessToken(GetCurrentProcess(), TOKEN_QUERY, &hToken) == FALSE)
{
hToken = NULL;
}
}
if (hToken != NULL)
{
DWORD dwReturnLength;
dwReturnLength = 0;
(BOOL)GetTokenInformation(hToken,
TokenPrivileges,
NULL,
0,
&dwReturnLength);
if (dwReturnLength != 0)
{
TOKEN_PRIVILEGES *pTokenPrivileges;
pTokenPrivileges = static_cast<TOKEN_PRIVILEGES*>(LocalAlloc(LMEM_FIXED, dwReturnLength));
if (pTokenPrivileges != NULL)
{
if (GetTokenInformation(hToken,
TokenPrivileges,
pTokenPrivileges,
dwReturnLength,
&dwReturnLength) != FALSE)
{
bool fFound;
DWORD dwIndex;
LUID luidPrivilege;
luidPrivilege.LowPart = SE_TCB_PRIVILEGE;
luidPrivilege.HighPart = 0;
for (fFound = false, dwIndex = 0; !fFound && (dwIndex < pTokenPrivileges->PrivilegeCount); ++dwIndex)
{
fFound = RtlEqualLuid(&pTokenPrivileges->Privileges[dwIndex].Luid, &luidPrivilege);
}
if (fFound)
{
fResult = TRUE;
}
else
{
SetLastError(ERROR_PRIVILEGE_NOT_HELD);
}
}
(HLOCAL)LocalFree(pTokenPrivileges);
}
}
(BOOL)CloseHandle(hToken);
}
return(fResult);
}
// --------------------------------------------------------------------------
// ::EnableBlankPasswords
//
// Arguments: <none>
//
// Returns: BOOL
//
// Purpose: Uses the MSV1_0 package via LSA to enable blank passwords for
// this process.
//
// History: 2001-06-04 vtan created
// --------------------------------------------------------------------------
BOOL EnableBlankPasswords (void)
{
NTSTATUS status;
if (g_hLSA == NULL)
{
LSA_OPERATIONAL_MODE LSAOperationalMode;
STRING strLogonProcess;
RtlInitString(&strLogonProcess, "BioLogon");
status = LsaRegisterLogonProcess(&strLogonProcess, &g_hLSA, &LSAOperationalMode);
if (NT_SUCCESS(status))
{
ULONG ulPackageID;
STRING strMSVPackage;
RtlInitString(&strMSVPackage, MSV1_0_PACKAGE_NAME);
status = LsaLookupAuthenticationPackage(g_hLSA,
&strMSVPackage,
&ulPackageID);
if (NT_SUCCESS(status))
{
NTSTATUS statusProtocol;
ULONG ulResponseSize;
MSV1_0_SETPROCESSOPTION_REQUEST request;
void* pResponse;
ZeroMemory(&request, sizeof(request));
request.MessageType = MsV1_0SetProcessOption;
request.ProcessOptions = MSV1_0_OPTION_ALLOW_BLANK_PASSWORD;
request.DisableOptions = FALSE;
status = LsaCallAuthenticationPackage(g_hLSA,
ulPackageID,
&request,
sizeof(request),
&pResponse,
&ulResponseSize,
&statusProtocol);
if (NT_SUCCESS(status))
{
status = statusProtocol;
}
}
}
if (!NT_SUCCESS(status))
{
SetLastError(RtlNtStatusToDosError(status));
}
}
else
{
SetLastError(ERROR_ALREADY_INITIALIZED);
status = STATUS_UNSUCCESSFUL;
}
return(NT_SUCCESS(status));
}
// --------------------------------------------------------------------------
// ::InitializeBioLogon
//
// Arguments: <none>
//
// Returns: BOOL
//
// Purpose: Initialize the biologon DLL. This call is required if you
// want to be able to use blank passwords. This will check that
// the caller has SE_TCB_PRIVILEGE.
//
// History: 2001-06-04 vtan created
// --------------------------------------------------------------------------
EXTERN_C BOOL WINAPI InitializeBioLogon (void)
{
return(CheckTCBPrivilege() && EnableBlankPasswords());
}
// --------------------------------------------------------------------------
// ::InitiateInteractiveLogonWithTimeout
//
// Arguments: pszUsername = User name.
// pszPassword = Password.
// dwTimeout = Time out in milliseconds.
//
// Returns: BOOL
//
// Purpose: External entry point function exported by name to initiate
// an interactive logon with specified timeout.
//
// History: 2001-06-04 vtan created
// --------------------------------------------------------------------------
EXTERN_C BOOL WINAPI InitiateInteractiveLogonWithTimeout (const WCHAR *pszUsername, WCHAR *pszPassword, DWORD dwTimeout)
{
typedef BOOL (WINAPI * PFNIIL) (const WCHAR *pszUsername, WCHAR *pszPassword, DWORD dwTimeout);
BOOL fResult;
static HMODULE s_hModule = reinterpret_cast<HMODULE>(-1);
static PFNIIL s_pfnIIL = NULL;
if (s_hModule == reinterpret_cast<HMODULE>(-1))
{
s_hModule = LoadLibrary(TEXT("shgina.dll"));
if (s_hModule != NULL)
{
s_pfnIIL = reinterpret_cast<PFNIIL>(GetProcAddress(s_hModule, MAKEINTRESOURCEA(6)));
if (s_pfnIIL != NULL)
{
fResult = s_pfnIIL(pszUsername, pszPassword, dwTimeout);
}
else
{
fResult = FALSE;
}
}
else
{
fResult = FALSE;
}
}
else if (s_pfnIIL != NULL)
{
fResult = s_pfnIIL(pszUsername, pszPassword, dwTimeout);
}
else
{
fResult = FALSE;
SetLastError(ERROR_CALL_NOT_IMPLEMENTED);
}
return(fResult);
}
// --------------------------------------------------------------------------
// ::InitiateInteractiveLogon
//
// Arguments: pszUsername = User name.
// pszPassword = Password.
//
// Returns: BOOL
//
// Purpose: External entry point function exported by name to initiate
// an interactive logon. This passes an INFINITE timeout. Use
// this function with care.
//
// History: 2001-06-04 vtan created
// --------------------------------------------------------------------------
EXTERN_C BOOL WINAPI InitiateInteractiveLogon (const WCHAR *pszUsername, WCHAR *pszPassword)
{
return(InitiateInteractiveLogonWithTimeout(pszUsername, pszPassword, INFINITE));
}
// --------------------------------------------------------------------------
// ::DllMain
//
// Arguments: See the platform SDK under DllMain.
//
// Returns: BOOL
//
// Purpose: DllMain for the DLL. Recognizes only DLL_PROCESS_DETACH to do
// some clean up.
//
// History: 2001-06-05 vtan created
// --------------------------------------------------------------------------
EXTERN_C BOOL WINAPI DllMain (HINSTANCE hInstance, DWORD dwReason, void *pvReserved)
{
UNREFERENCED_PARAMETER(hInstance);
UNREFERENCED_PARAMETER(pvReserved);
switch (dwReason)
{
case DLL_PROCESS_DETACH:
if (g_hLSA != NULL)
{
(BOOL)CloseHandle(g_hLSA);
g_hLSA = NULL;
}
break;
default:
break;
}
return(TRUE);
}