[ros-diffs] [ekohl] 59088: [SYSSETUP] Set the administrator password (hash) in the SAM database as part of the 2nd stage setup.

27 May 2013

Author: ekohl
Date: Mon May 27 13:34:59 2013
New Revision: 59088

URL: http://svn.reactos.org/svn/reactos?rev=59088&view=rev
Log:
[SYSSETUP]
Set the administrator password (hash) in the SAM database as part of the 2nd stage setup.

Modified:
    trunk/reactos/dll/win32/syssetup/globals.h
    trunk/reactos/dll/win32/syssetup/security.c
    trunk/reactos/dll/win32/syssetup/wizard.c

Modified: trunk/reactos/dll/win32/syssetup/globals.h
URL:
http://svn.reactos.org/svn/reactos/trunk/reactos/dll/win32/syssetup/globals…
==============================================================================

--- trunk/reactos/dll/win32/syssetup/globals.h	[iso-8859-1] (original)
+++ trunk/reactos/dll/win32/syssetup/globals.h	[iso-8859-1] Mon May 27 13:34:59 2013
@@ -67,6 +67,8 @@
 NTSTATUS SetAccountDomain(LPCWSTR DomainName,
                           PSID DomainSid);
 VOID InstallSecurity(VOID);
+NTSTATUS
+SetAdministratorPassword(LPCWSTR Password);
 
 /* wizard.c */
 VOID InstallWizard (VOID);

Modified: trunk/reactos/dll/win32/syssetup/security.c
URL:
http://svn.reactos.org/svn/reactos/trunk/reactos/dll/win32/syssetup/securit…
==============================================================================
--- trunk/reactos/dll/win32/syssetup/security.c	[iso-8859-1] (original)
+++ trunk/reactos/dll/win32/syssetup/security.c	[iso-8859-1] Mon May 27 13:34:59 2013
@@ -311,3 +311,106 @@
     InstallBuiltinAccounts();
     InstallPrivileges();
 }
+
+
+NTSTATUS
+SetAdministratorPassword(LPCWSTR Password)
+{
+    PPOLICY_ACCOUNT_DOMAIN_INFO OrigInfo = NULL;
+    USER_SET_PASSWORD_INFORMATION PasswordInfo;
+    LSA_OBJECT_ATTRIBUTES ObjectAttributes;
+    LSA_HANDLE PolicyHandle = NULL;
+    SAM_HANDLE ServerHandle = NULL;
+    SAM_HANDLE DomainHandle = NULL;
+    SAM_HANDLE UserHandle = NULL;
+    NTSTATUS Status;
+
+    DPRINT1("SYSSETUP: SetAdministratorPassword(%S)\n", Password);
+
+    memset(&ObjectAttributes, 0, sizeof(LSA_OBJECT_ATTRIBUTES));
+    ObjectAttributes.Length = sizeof(LSA_OBJECT_ATTRIBUTES);
+
+    Status = LsaOpenPolicy(NULL,
+                           &ObjectAttributes,
+                           POLICY_VIEW_LOCAL_INFORMATION | POLICY_TRUST_ADMIN,
+                           &PolicyHandle);
+    if (Status != STATUS_SUCCESS)
+    {
+        DPRINT1("LsaOpenPolicy() failed (Status: 0x%08lx)\n", Status);
+        return Status;
+    }
+
+    Status = LsaQueryInformationPolicy(PolicyHandle,
+                                       PolicyAccountDomainInformation,
+                                       (PVOID *)&OrigInfo);
+    if (!NT_SUCCESS(Status))
+    {
+        DPRINT1("LsaQueryInformationPolicy() failed (Status: 0x%08lx)\n",
Status);
+        goto done;
+    }
+
+    Status = SamConnect(NULL,
+                        &ServerHandle,
+                        SAM_SERVER_CONNECT | SAM_SERVER_LOOKUP_DOMAIN,
+                        NULL);
+    if (!NT_SUCCESS(Status))
+    {
+        DPRINT1("SamConnect() failed (Status: 0x%08lx)\n", Status);
+        goto done;
+    }
+
+    Status = SamOpenDomain(ServerHandle,
+                           DOMAIN_LOOKUP,
+                           OrigInfo->DomainSid,
+                           &DomainHandle);
+    if (!NT_SUCCESS(Status))
+    {
+        DPRINT1("SamOpenDomain() failed (Status: 0x%08lx)\n", Status);
+        goto done;
+    }
+
+    Status = SamOpenUser(DomainHandle,
+                         USER_FORCE_PASSWORD_CHANGE,
+                         DOMAIN_USER_RID_ADMIN, /* 500 */
+                         &UserHandle);
+    if (!NT_SUCCESS(Status))
+    {
+        DPRINT1("SamOpenUser() failed (Status %08lx)\n", Status);
+        goto done;
+    }
+
+    RtlInitUnicodeString(&PasswordInfo.Password, Password);
+    PasswordInfo.PasswordExpired = FALSE;
+
+    Status = SamSetInformationUser(UserHandle,
+                                   UserSetPasswordInformation,
+                                   (PVOID)&PasswordInfo);
+    if (!NT_SUCCESS(Status))
+    {
+        DPRINT1("SamSetInformationUser() failed (Status %08lx)\n", Status);
+        goto done;
+    }
+
+done:
+    if (OrigInfo != NULL)
+        LsaFreeMemory(OrigInfo);
+
+    if (PolicyHandle != NULL)
+        LsaClose(PolicyHandle);
+
+    if (UserHandle != NULL)
+        SamCloseHandle(UserHandle);
+
+    if (DomainHandle != NULL)
+        SamCloseHandle(DomainHandle);
+
+    if (ServerHandle != NULL)
+        SamCloseHandle(ServerHandle);
+
+    DPRINT1("SYSSETUP: SetAdministratorPassword() done (Status %08lx)\n",
Status);
+
+    return Status;
+}
+
+/* EOF */
+

Modified: trunk/reactos/dll/win32/syssetup/wizard.c
URL:
http://svn.reactos.org/svn/reactos/trunk/reactos/dll/win32/syssetup/wizard.…
==============================================================================
--- trunk/reactos/dll/win32/syssetup/wizard.c	[iso-8859-1] (original)
+++ trunk/reactos/dll/win32/syssetup/wizard.c	[iso-8859-1] Mon May 27 13:34:59 2013
@@ -709,7 +709,8 @@
                         Password++;
                     }
 
-                    /* FIXME: Set admin password */
+                    /* Set admin password */
+                    SetAdministratorPassword(Password1);
                     break;
 
                 case PSN_WIZBACK:



    

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

2005

2004

[ros-diffs] [ekohl] 59088: [SYSSETUP] Set the administrator password (hash) in the SAM database as part of the 2nd stage setup.