d1/db3/dll_2win32_2msgina_2lsa_8c_source.html

 /*
  * PROJECT:         ReactOS msgina.dll
  * FILE:            dll/win32/msgina/gui.c
  * PURPOSE:         ReactOS Logon GINA DLL
  * PROGRAMMER:      Eric Kohl
  */

 #include "msgina.h"

 NTSTATUS
 ConnectToLsa(
     PGINA_CONTEXT pgContext)
 {
     LSA_STRING LogonProcessName;
     LSA_STRING PackageName;
     LSA_OPERATIONAL_MODE SecurityMode = 0;
     NTSTATUS Status;

     /* We are already connected to the LSA */
     if (pgContext->LsaHandle != NULL)
         return STATUS_SUCCESS;

     /* Connect to the LSA server */
     RtlInitAnsiString((PANSI_STRING)&LogonProcessName,
                       "MSGINA");

     Status = LsaRegisterLogonProcess(&LogonProcessName,
                                      &pgContext->LsaHandle,
                                      &SecurityMode);
     if (!NT_SUCCESS(Status))
     {
         ERR("LsaRegisterLogonProcess failed (Status 0x%08lx)\n", Status);
         return Status;
     }

     /* Get the authentication package */
     RtlInitAnsiString((PANSI_STRING)&PackageName,
                       MSV1_0_PACKAGE_NAME);

     Status = LsaLookupAuthenticationPackage(pgContext->LsaHandle,
                                             &PackageName,
                                             &pgContext->AuthenticationPackage);
     if (!NT_SUCCESS(Status))
     {
         ERR("LsaLookupAuthenticationPackage failed (Status 0x%08lx)\n", Status);
     }

     return Status;
 }

 static const CHAR User32TokenSourceName[] = "User32  ";
 C_ASSERT(sizeof(User32TokenSourceName) == RTL_FIELD_SIZE(TOKEN_SOURCE, SourceName) + 1);

 NTSTATUS
 MyLogonUser(
     HANDLE LsaHandle,
     ULONG AuthenticationPackage,
     LPWSTR lpszUsername,
     LPWSTR lpszDomain,
     LPWSTR lpszPassword,
     PHANDLE phToken,
     PNTSTATUS SubStatus)
 {
     SID_IDENTIFIER_AUTHORITY LocalAuthority = {SECURITY_LOCAL_SID_AUTHORITY};
     SID_IDENTIFIER_AUTHORITY SystemAuthority = {SECURITY_NT_AUTHORITY};
     PSID LogonSid = NULL;
     PSID LocalSid = NULL;
     LSA_STRING OriginName;
     UNICODE_STRING DomainName;
     UNICODE_STRING UserName;
     UNICODE_STRING Password;
     PMSV1_0_INTERACTIVE_LOGON AuthInfo = NULL;
     ULONG AuthInfoLength;
     ULONG_PTR Ptr;
     TOKEN_SOURCE TokenSource;
     PTOKEN_GROUPS TokenGroups = NULL;
     PMSV1_0_INTERACTIVE_PROFILE ProfileBuffer = NULL;
     ULONG ProfileBufferLength = 0;
     LUID Luid = {0, 0};
     LUID LogonId = {0, 0};
     HANDLE TokenHandle = NULL;
     QUOTA_LIMITS QuotaLimits;
     NTSTATUS Status;

     *phToken = NULL;

     RtlInitAnsiString((PANSI_STRING)&OriginName,
                       "MSGINA Logon");

     RtlInitUnicodeString(&DomainName,
                          lpszDomain);

     RtlInitUnicodeString(&UserName,
                          lpszUsername);

     RtlInitUnicodeString(&Password,
                          lpszPassword);

     AuthInfoLength = sizeof(MSV1_0_INTERACTIVE_LOGON)+
                      DomainName.MaximumLength +
                      UserName.MaximumLength +
                      Password.MaximumLength;

     AuthInfo = RtlAllocateHeap(RtlGetProcessHeap(),
                                HEAP_ZERO_MEMORY,
                                AuthInfoLength);
     if (AuthInfo == NULL)
     {
         Status = STATUS_INSUFFICIENT_RESOURCES;
         goto done;
     }

     AuthInfo->MessageType = MsV1_0InteractiveLogon;

     Ptr = (ULONG_PTR)AuthInfo + sizeof(MSV1_0_INTERACTIVE_LOGON);

     AuthInfo->LogonDomainName.Length = DomainName.Length;
     AuthInfo->LogonDomainName.MaximumLength = DomainName.MaximumLength;
     AuthInfo->LogonDomainName.Buffer = (DomainName.Buffer == NULL) ? NULL : (PWCHAR)Ptr;
     if (DomainName.MaximumLength > 0)
     {
         RtlCopyMemory(AuthInfo->LogonDomainName.Buffer,
                       DomainName.Buffer,
                       DomainName.MaximumLength);

         Ptr += DomainName.MaximumLength;
     }

     AuthInfo->UserName.Length = UserName.Length;
     AuthInfo->UserName.MaximumLength = UserName.MaximumLength;
     AuthInfo->UserName.Buffer = (PWCHAR)Ptr;
     if (UserName.MaximumLength > 0)
         RtlCopyMemory(AuthInfo->UserName.Buffer,
                       UserName.Buffer,
                       UserName.MaximumLength);

     Ptr += UserName.MaximumLength;

     AuthInfo->Password.Length = Password.Length;
     AuthInfo->Password.MaximumLength = Password.MaximumLength;
     AuthInfo->Password.Buffer = (PWCHAR)Ptr;
     if (Password.MaximumLength > 0)
         RtlCopyMemory(AuthInfo->Password.Buffer,
                       Password.Buffer,
                       Password.MaximumLength);

     /* Create the Logon SID*/
     AllocateLocallyUniqueId(&LogonId);
     Status = RtlAllocateAndInitializeSid(&SystemAuthority,
                                          SECURITY_LOGON_IDS_RID_COUNT,
                                          SECURITY_LOGON_IDS_RID,
                                          LogonId.HighPart,
                                          LogonId.LowPart,
                                          SECURITY_NULL_RID,
                                          SECURITY_NULL_RID,
                                          SECURITY_NULL_RID,
                                          SECURITY_NULL_RID,
                                          SECURITY_NULL_RID,
                                          &LogonSid);
     if (!NT_SUCCESS(Status))
         goto done;

     /* Create the Local SID*/
     Status = RtlAllocateAndInitializeSid(&LocalAuthority,
                                          1,
                                          SECURITY_LOCAL_RID,
                                          SECURITY_NULL_RID,
                                          SECURITY_NULL_RID,
                                          SECURITY_NULL_RID,
                                          SECURITY_NULL_RID,
                                          SECURITY_NULL_RID,
                                          SECURITY_NULL_RID,
                                          SECURITY_NULL_RID,
                                          &LocalSid);
     if (!NT_SUCCESS(Status))
         goto done;

     /* Allocate and set the token groups */
     TokenGroups = RtlAllocateHeap(RtlGetProcessHeap(),
                                   HEAP_ZERO_MEMORY,
                                   sizeof(TOKEN_GROUPS) + ((2 - ANYSIZE_ARRAY) * sizeof(SID_AND_ATTRIBUTES)));
     if (TokenGroups == NULL)
     {
         Status = STATUS_INSUFFICIENT_RESOURCES;
         goto done;
     }

     TokenGroups->GroupCount = 2;
     TokenGroups->Groups[0].Sid = LogonSid;
     TokenGroups->Groups[0].Attributes = SE_GROUP_MANDATORY | SE_GROUP_ENABLED |
                                         SE_GROUP_ENABLED_BY_DEFAULT | SE_GROUP_LOGON_ID;
     TokenGroups->Groups[1].Sid = LocalSid;
     TokenGroups->Groups[1].Attributes = SE_GROUP_MANDATORY | SE_GROUP_ENABLED |
                                         SE_GROUP_ENABLED_BY_DEFAULT;

     /* Set the token source */
     RtlCopyMemory(TokenSource.SourceName, User32TokenSourceName, sizeof(TokenSource.SourceName));
     AllocateLocallyUniqueId(&TokenSource.SourceIdentifier);

     Status = LsaLogonUser(LsaHandle,
                           &OriginName,
                           Interactive,
                           AuthenticationPackage,
                           (PVOID)AuthInfo,
                           AuthInfoLength,
                           TokenGroups,
                           &TokenSource,
                           (PVOID*)&ProfileBuffer,
                           &ProfileBufferLength,
                           &Luid,
                           &TokenHandle,
                           &QuotaLimits,
                           SubStatus);
     if (!NT_SUCCESS(Status))
     {
         ERR("LsaLogonUser failed (Status 0x%08lx)\n", Status);
         goto done;
     }

     if (ProfileBuffer != NULL)
     {
         TRACE("ProfileBuffer: %p\n", ProfileBuffer);
         TRACE("MessageType: %u\n", ProfileBuffer->MessageType);

         TRACE("FullName: %p\n", ProfileBuffer->FullName.Buffer);
         TRACE("FullName: %S\n", ProfileBuffer->FullName.Buffer);

         TRACE("LogonServer: %p\n", ProfileBuffer->LogonServer.Buffer);
         TRACE("LogonServer: %S\n", ProfileBuffer->LogonServer.Buffer);
     }

     TRACE("Luid: 0x%08lx%08lx\n", Luid.HighPart, Luid.LowPart);

     if (TokenHandle != NULL)
     {
         TRACE("TokenHandle: %p\n", TokenHandle);
     }

     *phToken = TokenHandle;

 done:
     if (ProfileBuffer != NULL)
         LsaFreeReturnBuffer(ProfileBuffer);

     if (!NT_SUCCESS(Status))
     {
         if (TokenHandle != NULL)
             CloseHandle(TokenHandle);
     }

     if (TokenGroups != NULL)
         RtlFreeHeap(RtlGetProcessHeap(), 0, TokenGroups);

     if (LocalSid != NULL)
         RtlFreeSid(LocalSid);

     if (LogonSid != NULL)
         RtlFreeSid(LogonSid);

     if (AuthInfo != NULL)
         RtlFreeHeap(RtlGetProcessHeap(), 0, AuthInfo);

     return Status;
 }

 /* EOF */
PNTSTATUS
* PNTSTATUS
Definition: strlen.c:14

RTL_FIELD_SIZE
#define RTL_FIELD_SIZE(type, field)
Definition: kdb_expr.c:84

CloseHandle
#define CloseHandle
Definition: compat.h:598

MSV1_0_PACKAGE_NAME
#define MSV1_0_PACKAGE_NAME
Definition: ntsecapi.h:42

STATUS_INSUFFICIENT_RESOURCES
#define STATUS_INSUFFICIENT_RESOURCES
Definition: udferr_usr.h:158

_MSV1_0_INTERACTIVE_LOGON::MessageType
MSV1_0_LOGON_SUBMIT_TYPE MessageType
Definition: ntsecapi.h:434

_TOKEN_GROUPS
Definition: setypes.h:1009

_SID
Definition: ms-dtyp.idl:198

MyLogonUser
NTSTATUS MyLogonUser(HANDLE LsaHandle, ULONG AuthenticationPackage, LPWSTR lpszUsername, LPWSTR lpszDomain, LPWSTR lpszPassword, PHANDLE phToken, PNTSTATUS SubStatus)
Definition: lsa.c:55

_UNICODE_STRING::MaximumLength
USHORT MaximumLength
Definition: env_spec_w32.h:370

TokenSource
Definition: setypes.h:968

ANYSIZE_ARRAY
#define ANYSIZE_ARRAY
Definition: typedefs.h:46

ConnectToLsa
NTSTATUS ConnectToLsa(PGINA_CONTEXT pgContext)
Definition: lsa.c:11

RtlFreeSid
NTSYSAPI PVOID NTAPI RtlFreeSid(_In_ _Post_invalid_ PSID Sid)

CHAR
char CHAR
Definition: xmlstorage.h:175

Ptr
_Must_inspect_result_ _In_ PFSRTL_PER_STREAM_CONTEXT Ptr
Definition: fsrtlfuncs.h:898

NTSTATUS
LONG NTSTATUS
Definition: precomp.h:26

_UNICODE_STRING::Length
USHORT Length
Definition: env_spec_w32.h:369

RtlFreeHeap
BOOLEAN NTAPI RtlFreeHeap(IN PVOID HeapHandle, IN ULONG Flags, IN PVOID HeapBase)
Definition: heap.c:606

Password
Definition: telnetd.h:65

C_ASSERT
C_ASSERT(sizeof(User32TokenSourceName)==RTL_FIELD_SIZE(TOKEN_SOURCE, SourceName)+1)

Interactive
Definition: ntsecapi.h:289

lpszPassword
_In_opt_ LPSTR _In_opt_ LPSTR lpszPassword
Definition: winbase.h:2695

ProfileBufferLength
_IRQL_requires_same_ _In_ PLSA_STRING _In_ SECURITY_LOGON_TYPE _In_ ULONG _In_ ULONG _In_opt_ PTOKEN_GROUPS _In_ PTOKEN_SOURCE _Out_ PVOID _Out_ PULONG ProfileBufferLength
Definition: ntifs.template.h:711

PWCHAR
uint16_t * PWCHAR
Definition: typedefs.h:56

LocalSid
PSID LocalSid
Definition: globals.c:15

RtlAllocateAndInitializeSid
NTSYSAPI NTSTATUS NTAPI RtlAllocateAndInitializeSid(IN PSID_IDENTIFIER_AUTHORITY IdentifierAuthority, IN UCHAR SubAuthorityCount, IN ULONG SubAuthority0, IN ULONG SubAuthority1, IN ULONG SubAuthority2, IN ULONG SubAuthority3, IN ULONG SubAuthority4, IN ULONG SubAuthority5, IN ULONG SubAuthority6, IN ULONG SubAuthority7, OUT PSID *Sid)
Definition: sid.c:290

OriginName
_IRQL_requires_same_ _In_ PLSA_STRING OriginName
Definition: ntifs.template.h:707

_MSV1_0_INTERACTIVE_LOGON::Password
UNICODE_STRING Password
Definition: ntsecapi.h:437

LsaLogonUser
NTSTATUS NTAPI LsaLogonUser(IN HANDLE LsaHandle, IN PLSA_STRING OriginName, IN SECURITY_LOGON_TYPE LogonType, IN ULONG AuthenticationPackage, IN PVOID AuthenticationInformation, IN ULONG AuthenticationInformationLength, IN PTOKEN_GROUPS LocalGroups OPTIONAL, IN PTOKEN_SOURCE SourceContext, OUT PVOID *ProfileBuffer, OUT PULONG ProfileBufferLength, OUT PLUID LogonId, OUT PHANDLE Token, OUT PQUOTA_LIMITS Quotas, OUT PNTSTATUS SubStatus)
Definition: lsa.c:184

_MSV1_0_INTERACTIVE_PROFILE
Definition: ntsecapi.h:439

RtlInitAnsiString
NTSYSAPI VOID NTAPI RtlInitAnsiString(PANSI_STRING DestinationString, PCSZ SourceString)

ULONG_PTR
uint32_t ULONG_PTR
Definition: typedefs.h:65

SECURITY_LOGON_IDS_RID_COUNT
#define SECURITY_LOGON_IDS_RID_COUNT
Definition: setypes.h:561

SubStatus
_IRQL_requires_same_ _In_ PLSA_STRING _In_ SECURITY_LOGON_TYPE _In_ ULONG _In_ ULONG _In_opt_ PTOKEN_GROUPS _In_ PTOKEN_SOURCE _Out_ PVOID _Out_ PULONG _Inout_ PLUID _Out_ PHANDLE _Out_ PQUOTA_LIMITS _Out_ PNTSTATUS SubStatus
Definition: ntifs.template.h:711

_LUID
Definition: devicetopology.idl:136

SECURITY_LOCAL_SID_AUTHORITY
#define SECURITY_LOCAL_SID_AUTHORITY
Definition: setypes.h:530

_UNICODE_STRING::Buffer
PWSTR Buffer
Definition: env_spec_w32.h:371

MsV1_0InteractiveLogon
Definition: ntsecapi.h:199

_ANSI_STRING
Definition: env_spec_w32.h:375

LsaLookupAuthenticationPackage
NTSTATUS NTAPI LsaLookupAuthenticationPackage(IN HANDLE LsaHandle, IN PLSA_STRING PackageName, OUT PULONG AuthenticationPackage)
Definition: lsa.c:136

SecurityMode
_IRQL_requires_same_ _Out_ PHANDLE _Out_ PLSA_OPERATIONAL_MODE SecurityMode
Definition: ntifs.template.h:698

SE_GROUP_ENABLED_BY_DEFAULT
#define SE_GROUP_ENABLED_BY_DEFAULT
Definition: setypes.h:91

GINA_CONTEXT::LsaHandle
HANDLE LsaHandle
Definition: msgina.h:39

TokenHandle
_In_ ACCESS_MASK _In_ ULONG _Out_ PHANDLE TokenHandle
Definition: psfuncs.h:715

LSA_OPERATIONAL_MODE
ULONG LSA_OPERATIONAL_MODE
Definition: ntsecapi.h:367

SECURITY_NT_AUTHORITY
#define SECURITY_NT_AUTHORITY
Definition: setypes.h:554

msgina.h

LsaHandle
HANDLE LsaHandle
Definition: wkssvc.c:41

TokenGroups
Definition: setypes.h:963

RtlAllocateHeap
PVOID NTAPI RtlAllocateHeap(IN PVOID HeapHandle, IN ULONG Flags, IN SIZE_T Size)
Definition: heap.c:588

Status
Status
Definition: gdiplustypes.h:24

MSV1_0_INTERACTIVE_LOGON
struct _MSV1_0_INTERACTIVE_LOGON MSV1_0_INTERACTIVE_LOGON

_MSV1_0_INTERACTIVE_LOGON::UserName
UNICODE_STRING UserName
Definition: ntsecapi.h:436

TRACE
#define TRACE(s)
Definition: solgame.cpp:4

GINA_CONTEXT
Definition: msgina.h:32

NT_SUCCESS
#define NT_SUCCESS(StatCode)
Definition: apphelp.c:32

SE_GROUP_ENABLED
#define SE_GROUP_ENABLED
Definition: setypes.h:92

_LUID::LowPart
DWORD LowPart
Definition: devicetopology.idl:138

_SID_AND_ATTRIBUTES
Definition: setypes.h:502

User32TokenSourceName
static const CHAR User32TokenSourceName[]
Definition: lsa.c:51

SECURITY_LOCAL_RID
#define SECURITY_LOCAL_RID
Definition: setypes.h:542

phToken
_In_opt_ LPSTR _In_opt_ LPSTR _In_ DWORD _In_ DWORD _Out_opt_ PHANDLE phToken
Definition: winbase.h:2695

_LSA_STRING::Buffer
PCHAR Buffer
Definition: ntsecapi.h:174

SE_GROUP_MANDATORY
#define SE_GROUP_MANDATORY
Definition: setypes.h:90

_QUOTA_LIMITS
Definition: lsa.idl:286

SECURITY_NULL_RID
#define SECURITY_NULL_RID
Definition: setypes.h:540

GINA_CONTEXT::AuthenticationPackage
ULONG AuthenticationPackage
Definition: msgina.h:40

_LUID::HighPart
LONG HighPart
Definition: devicetopology.idl:139

PHANDLE
PVOID *typedef PHANDLE
Definition: ntsecpkg.h:454

_SID_IDENTIFIER_AUTHORITY
Definition: ms-dtyp.idl:194

ProfileBuffer
_IRQL_requires_same_ _In_ PLSA_STRING _In_ SECURITY_LOGON_TYPE _In_ ULONG _In_ ULONG _In_opt_ PTOKEN_GROUPS _In_ PTOKEN_SOURCE _Out_ PVOID * ProfileBuffer
Definition: ntifs.template.h:711

AuthenticationPackage
ULONG AuthenticationPackage
Definition: logon.c:18

_TOKEN_SOURCE
Definition: imports.h:277

SE_GROUP_LOGON_ID
#define SE_GROUP_LOGON_ID
Definition: setypes.h:98

LsaFreeReturnBuffer
NTSTATUS NTAPI LsaFreeReturnBuffer(IN PVOID Buffer)
Definition: lsa.c:120

ERR
#define ERR(fmt,...)
Definition: debug.h:110

_UNICODE_STRING
Definition: env_spec_w32.h:368

LsaRegisterLogonProcess
NTSTATUS NTAPI LsaRegisterLogonProcess(IN PLSA_STRING LogonProcessName, OUT PHANDLE LsaHandle, OUT PLSA_OPERATIONAL_MODE OperationalMode)
Definition: lsa.c:249

AllocateLocallyUniqueId
BOOL WINAPI AllocateLocallyUniqueId(PLUID Luid)
Definition: security.c:1220

lpszDomain
_In_opt_ LPSTR lpszDomain
Definition: winbase.h:2695

NULL
#define NULL
Definition: types.h:112

SourceName
WCHAR SourceName[256]
Definition: arping.c:28

LogonId
_IRQL_requires_same_ _In_ PLSA_STRING _In_ SECURITY_LOGON_TYPE _In_ ULONG _In_ ULONG _In_opt_ PTOKEN_GROUPS _In_ PTOKEN_SOURCE _Out_ PVOID _Out_ PULONG _Inout_ PLUID LogonId
Definition: ntifs.template.h:711

HEAP_ZERO_MEMORY
#define HEAP_ZERO_MEMORY
Definition: compat.h:134

SECURITY_LOGON_IDS_RID
#define SECURITY_LOGON_IDS_RID
Definition: setypes.h:560

ULONG
unsigned int ULONG
Definition: retypes.h:1

RtlInitUnicodeString
NTSYSAPI VOID NTAPI RtlInitUnicodeString(PUNICODE_STRING DestinationString, PCWSTR SourceString)

ULONG_PTR
#define ULONG_PTR
Definition: config.h:101

RtlCopyMemory
#define RtlCopyMemory(Destination, Source, Length)
Definition: typedefs.h:263

STATUS_SUCCESS
#define STATUS_SUCCESS
Definition: shellext.h:65

_LSA_STRING
Definition: ntsecapi.h:171

LPWSTR
WCHAR * LPWSTR
Definition: xmlstorage.h:184

void
Definition: nsiface.idl:2306

_MSV1_0_INTERACTIVE_LOGON
Definition: ntsecapi.h:433

_MSV1_0_INTERACTIVE_LOGON::LogonDomainName
UNICODE_STRING LogonDomainName
Definition: ntsecapi.h:435

SystemAuthority
static SID_IDENTIFIER_AUTHORITY SystemAuthority
Definition: msgina.c:38