archive
/
windows-nt-4.0
mirror of https://github.com/lianthony/NT4.0
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Windows NT 4.0 source code leak
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
2 Commits
1 Branch
0 Tags
184 MiB
Tree: b4a8d373d8
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'b4a8d373d8'
${ noResults }
windows-nt-4.0/private/ntos/se/uipers.c

580 lines
15 KiB
Raw Normal View History

initial commit
4 years ago
  1. /*++
  3. Copyright (c) 1989 Microsoft Corporation
  5. Module Name:
  7. uipers.c
  9. Abstract:
  11. Temporary security context display command.
  14. Author:
  16. Jim Kelly (JimK) 23-May-1991
  18. Revision History:
  20. --*/
  22. #include <nt.h>
  23. #include <ntrtl.h>
  24. #include <nturtl.h>
  25. #include <stdio.h>
  26. #include <string.h>
  28. #define _TST_USER_ // User mode test
  31. #include "tsevars.c" // Common test variables
  32. #include "tsecomm.c" // Mode dependent macros and routines.
  35. GUID SystemAuthenticationId = SYSTEM_GUID;
  38. VOID
  39. DisplaySecurityContext(
  40. IN HANDLE TokenHandle
  41. );
  44. VOID
  45. DisplayAccountSid(
  46. PISID Sid
  47. );
  50. BOOLEAN
  51. SidTranslation(
  52. PSID Sid,
  53. PSTRING AccountName
  54. );
  59. ////////////////////////////////////////////////////////////////
  60. // //
  61. // Private Macros //
  62. // //
  63. ////////////////////////////////////////////////////////////////
  66. #define PrintGuid(G) \
  67. printf( "(0x%lx-%hx-%hx-%hx-%hx-%hx-%hx-%hx-%hx-%hx-%hx)\n", \
  68. (G)->Data1, (G)->Data2, (G)->Data3, \
  69. (G)->Data4[0], (G)->Data4[1], (G)->Data4[2], \
  70. (G)->Data4[3], (G)->Data4[4], (G)->Data4[5], \
  71. (G)->Data4[6], (G)->Data4[7]); \
  74. BOOLEAN
  75. SidTranslation(
  76. PSID Sid,
  77. PSTRING AccountName
  78. )
  79. // AccountName is expected to have a large maximum length
  81. {
  82. if (RtlEqualSid(Sid, WorldSid)) {
  83. RtlInitString( AccountName, "WORLD");
  84. return(TRUE);
  85. }
  87. if (RtlEqualSid(Sid, LocalSid)) {
  88. RtlInitString( AccountName, "LOCAL");
  90. return(TRUE);
  91. }
  93. if (RtlEqualSid(Sid, NetworkSid)) {
  94. RtlInitString( AccountName, "NETWORK");
  96. return(TRUE);
  97. }
  99. if (RtlEqualSid(Sid, BatchSid)) {
  100. RtlInitString( AccountName, "BATCH");
  102. return(TRUE);
  103. }
  105. if (RtlEqualSid(Sid, InteractiveSid)) {
  106. RtlInitString( AccountName, "INTERACTIVE");
  107. return(TRUE);
  108. }
  110. if (RtlEqualSid(Sid, LocalSystemSid)) {
  111. RtlInitString( AccountName, "SYSTEM");
  112. return(TRUE);
  113. }
  115. if (RtlEqualSid(Sid, LocalManagerSid)) {
  116. RtlInitString( AccountName, "LOCAL MANAGER");
  117. return(TRUE);
  118. }
  120. if (RtlEqualSid(Sid, LocalAdminSid)) {
  121. RtlInitString( AccountName, "LOCAL ADMIN");
  122. return(TRUE);
  123. }
  125. return(FALSE);
  127. }
  130. VOID
  131. DisplayAccountSid(
  132. PISID Sid
  133. )
  134. {
  135. UCHAR Buffer[128];
  136. STRING AccountName;
  137. UCHAR i;
  138. ULONG Tmp;
  140. Buffer[0] = 0;
  142. AccountName.MaximumLength = 127;
  143. AccountName.Length = 0;
  144. AccountName.Buffer = (PVOID)&Buffer[0];
  148. if (SidTranslation( (PSID)Sid, &AccountName) ) {
  150. printf("%s\n", AccountName.Buffer );
  152. } else {
  153. printf("S-%lu-", (USHORT)Sid->Revision );
  154. if ( (Sid->IdentifierAuthority.Value[0] != 0) ||
  155. (Sid->IdentifierAuthority.Value[1] != 0) ){
  156. printf("0x%02hx%02hx%02hx%02hx%02hx%02hx",
  157. (USHORT)Sid->IdentifierAuthority.Value[0],
  158. (USHORT)Sid->IdentifierAuthority.Value[1],
  159. (USHORT)Sid->IdentifierAuthority.Value[2],
  160. (USHORT)Sid->IdentifierAuthority.Value[3],
  161. (USHORT)Sid->IdentifierAuthority.Value[4],
  162. (USHORT)Sid->IdentifierAuthority.Value[5] );
  163. } else {
  164. Tmp = (ULONG)Sid->IdentifierAuthority.Value[5] +
  165. (ULONG)(Sid->IdentifierAuthority.Value[4] << 8) +
  166. (ULONG)(Sid->IdentifierAuthority.Value[3] << 16) +
  167. (ULONG)(Sid->IdentifierAuthority.Value[2] << 24);
  168. printf("%lu", Tmp);
  169. }
  172. for (i=0;i<Sid->SubAuthorityCount ;i++ ) {
  173. printf("-%lu", Sid->SubAuthority[i]);
  174. }
  175. printf("\n");
  177. }
  179. }
  183. BOOLEAN
  184. DisplayPrivilegeName(
  185. PLUID Privilege
  186. )
  187. {
  189. //
  190. // This should be rewritten to use RtlLookupPrivilegeName.
  191. //
  192. // First we should probably spec and write RtlLookupPrivilegeName.
  193. //
  195. if ( ((*Privilege)QuadPart == CreateTokenPrivilege.QuadPart)) {
  196. printf("SeCreateTokenPrivilege ");
  197. return(TRUE);
  198. }
  200. if ( ((*Privilege).QuadPart == AssignPrimaryTokenPrivilege.QuadPart)) {
  201. printf("SeAssignPrimaryTokenPrivilege ");
  202. return(TRUE);
  203. }
  205. if ( ((*Privilege).QuadPart == LockMemoryPrivilege.QuadPart)) {
  206. printf("SeLockMemoryPrivilege ");
  207. return(TRUE);
  208. }
  210. if ( ((*Privilege).QuadPart == IncreaseQuotaPrivilege.QuadPart)) {
  211. printf("SeIncreaseQuotaPrivilege ");
  212. return(TRUE);
  213. }
  215. if ( ((*Privilege).QuadPart == UnsolicitedInputPrivilege.QuadPart)) {
  216. printf("SeUnsolicitedInputPrivilege ");
  217. return(TRUE);
  218. }
  220. if ( ((*Privilege).QuadPart == TcbPrivilege.QuadPart)) {
  221. printf("SeTcbPrivilege ");
  222. return(TRUE);
  223. }
  225. if ( ((*Privilege).QuadPart == SecurityPrivilege.QuadPart)) {
  226. printf("SeSecurityPrivilege (Security Operator) ");
  227. return(TRUE);
  228. }
  231. if ( ((*Privilege).QuadPart == TakeOwnershipPrivilege.QuadPart)) {
  232. printf("SeTakeOwnershipPrivilege ");
  233. return(TRUE);
  234. }
  236. if ( ((*Privilege).QuadPart == LpcReplyBoostPrivilege.QuadPart)) {
  237. printf("SeLpcReplyBoostPrivilege ");
  238. return(TRUE);
  239. }
  241. if ( ((*Privilege).QuadPart == CreatePagefilePrivilege.QuadPart)) {
  242. printf("SeCreatePagefilePrivilege ");
  243. return(TRUE);
  244. }
  246. if ( ((*Privilege).QuadPart == IncreaseBasePriorityPrivilege.QuadPart)) {
  247. printf("SeIncreaseBasePriorityPrivilege ");
  248. return(TRUE);
  249. }
  251. if ( ((*Privilege).QuadPart == SystemProfilePrivilege.QuadPart)) {
  252. printf("SeSystemProfilePrivilege ");
  253. return(TRUE);
  254. }
  256. if ( ((*Privilege).QuadPart == SystemtimePrivilege.QuadPart)) {
  257. printf("SeSystemtimePrivilege ");
  258. return(TRUE);
  259. }
  261. if ( ((*Privilege).QuadPart == ProfileSingleProcessPrivilege.QuadPart)) {
  262. printf("SeProfileSingleProcessPrivilege ");
  263. return(TRUE);
  264. }
  266. if ( ((*Privilege).QuadPart == CreatePermanentPrivilege.QuadPart)) {
  267. printf("SeCreatePermanentPrivilege ");
  268. return(TRUE);
  269. }
  271. if ( ((*Privilege).QuadPart == BackupPrivilege.QuadPart)) {
  272. printf("SeBackupPrivilege ");
  273. return(TRUE);
  274. }
  276. if ( ((*Privilege).QuadPart == RestorePrivilege.QuadPart)) {
  277. printf("SeRestorePrivilege ");
  278. return(TRUE);
  279. }
  281. if ( ((*Privilege).QuadPart == ShutdownPrivilege.QuadPart)) {
  282. printf("SeShutdownPrivilege ");
  283. return(TRUE);
  284. }
  286. if ( ((*Privilege).QuadPart == DebugPrivilege.QuadPart)) {
  287. printf("SeDebugPrivilege ");
  288. return(TRUE);
  289. }
  291. if ( ((*Privilege).QuadPart == SystemEnvironmentPrivilege.QuadPart)) {
  292. printf("SeSystemEnvironmentPrivilege ");
  293. return(TRUE);
  294. }
  296. return(FALSE);
  298. }
  302. VOID
  303. DisplayPrivilege(
  304. PLUID_AND_ATTRIBUTES Privilege
  305. )
  306. {
  309. if (!DisplayPrivilegeName(&Privilege->Luid)) {
  310. printf("(Unknown Privilege. Value is: (0x%lx,0x%lx))",
  311. Privilege->Luid.HighPart,
  312. Privilege->Luid.LowPart
  313. );
  314. }
  318. //
  319. // Display the attributes assigned to the privilege.
  320. //
  322. printf("\n [");
  323. if (!(Privilege->Attributes & SE_PRIVILEGE_ENABLED)) {
  324. printf("Not ");
  325. }
  326. printf("Enabled");
  328. //printf(" / ");
  329. //if (!(Privilege->Attributes & SE_PRIVILEGE_ENABLED_BY_DEFAULT)) {
  330. // printf("Not ");
  331. //}
  332. //printf("Enabled By Default");
  335. printf("]\n");
  336. printf(" ");
  339. return;
  341. }
  344. VOID
  345. DisplaySecurityContext(
  346. IN HANDLE TokenHandle
  347. )
  348. {
  350. #define BUFFER_SIZE (2048)
  352. NTSTATUS Status;
  353. ULONG i;
  354. ULONG ReturnLength;
  355. TOKEN_STATISTICS ProcessTokenStatistics;
  356. GUID AuthenticationId;
  357. UCHAR Buffer[BUFFER_SIZE];
  360. PTOKEN_USER UserId;
  361. PTOKEN_OWNER DefaultOwner;
  362. PTOKEN_PRIMARY_GROUP PrimaryGroup;
  363. PTOKEN_GROUPS GroupIds;
  364. PTOKEN_PRIVILEGES Privileges;
  369. /////////////////////////////////////////////////////////////////////////
  370. // //
  371. // Logon ID //
  372. // //
  373. /////////////////////////////////////////////////////////////////////////
  375. Status = NtQueryInformationToken(
  376. TokenHandle, // Handle
  377. TokenStatistics, // TokenInformationClass
  378. &ProcessTokenStatistics, // TokenInformation
  379. sizeof(TOKEN_STATISTICS), // TokenInformationLength
  380. &ReturnLength // ReturnLength
  381. );
  382. ASSERT(NT_SUCCESS(Status));
  383. AuthenticationId = ProcessTokenStatistics.AuthenticationId;
  385. printf(" Logon Session: ");
  386. if (RtlEqualGuid(&AuthenticationId, &SystemAuthenticationId )) {
  387. printf("(System Logon Session)\n");
  388. } else {
  389. PrintGuid( &AuthenticationId );
  390. }
  395. /////////////////////////////////////////////////////////////////////////
  396. // //
  397. // User Id //
  398. // //
  399. /////////////////////////////////////////////////////////////////////////
  401. UserId = (PTOKEN_USER)&Buffer[0];
  402. Status = NtQueryInformationToken(
  403. TokenHandle, // Handle
  404. TokenUser, // TokenInformationClass
  405. UserId, // TokenInformation
  406. BUFFER_SIZE, // TokenInformationLength
  407. &ReturnLength // ReturnLength
  408. );
  411. ASSERT(NT_SUCCESS(Status));
  413. printf(" User id: ");
  414. DisplayAccountSid( (PISID)UserId->User.Sid );
  420. /////////////////////////////////////////////////////////////////////////
  421. // //
  422. // Default Owner //
  423. // //
  424. /////////////////////////////////////////////////////////////////////////
  426. DefaultOwner = (PTOKEN_OWNER)&Buffer[0];
  428. Status = NtQueryInformationToken(
  429. TokenHandle, // Handle
  430. TokenOwner, // TokenInformationClass
  431. DefaultOwner, // TokenInformation
  432. BUFFER_SIZE, // TokenInformationLength
  433. &ReturnLength // ReturnLength
  434. );
  437. ASSERT(NT_SUCCESS(Status));
  439. printf(" Default Owner: ");
  440. DisplayAccountSid( (PISID)DefaultOwner->Owner );
  447. /////////////////////////////////////////////////////////////////////////
  448. // //
  449. // Primary Group //
  450. // //
  451. /////////////////////////////////////////////////////////////////////////
  453. PrimaryGroup = (PTOKEN_PRIMARY_GROUP)&Buffer[0];
  455. Status = NtQueryInformationToken(
  456. TokenHandle, // Handle
  457. TokenPrimaryGroup, // TokenInformationClass
  458. PrimaryGroup, // TokenInformation
  459. BUFFER_SIZE, // TokenInformationLength
  460. &ReturnLength // ReturnLength
  461. );
  464. ASSERT(NT_SUCCESS(Status));
  466. printf(" Primary Group: ");
  467. DisplayAccountSid( (PISID)PrimaryGroup->PrimaryGroup );
  474. /////////////////////////////////////////////////////////////////////////
  475. // //
  476. // Group Ids //
  477. // //
  478. /////////////////////////////////////////////////////////////////////////
  480. printf("\n");
  481. GroupIds = (PTOKEN_GROUPS)&Buffer[0];
  482. Status = NtQueryInformationToken(
  483. TokenHandle, // Handle
  484. TokenGroups, // TokenInformationClass
  485. GroupIds, // TokenInformation
  486. BUFFER_SIZE, // TokenInformationLength
  487. &ReturnLength // ReturnLength
  488. );
  491. ASSERT(NT_SUCCESS(Status));
  493. //printf(" Number of groups: %ld\n", GroupIds->GroupCount);
  494. printf(" Groups: ");
  496. for (i=0; i < GroupIds->GroupCount; i++ ) {
  497. //printf(" Group %ld: ", i);
  498. DisplayAccountSid( (PISID)GroupIds->Groups[i].Sid );
  499. printf(" ");
  500. }
  506. /////////////////////////////////////////////////////////////////////////
  507. // //
  508. // Privileges //
  509. // //
  510. /////////////////////////////////////////////////////////////////////////
  512. printf("\n");
  513. Privileges = (PTOKEN_PRIVILEGES)&Buffer[0];
  514. Status = NtQueryInformationToken(
  515. TokenHandle, // Handle
  516. TokenPrivileges, // TokenInformationClass
  517. Privileges, // TokenInformation
  518. BUFFER_SIZE, // TokenInformationLength
  519. &ReturnLength // ReturnLength
  520. );
  523. ASSERT(NT_SUCCESS(Status));
  525. printf(" Privileges: ");
  526. if (Privileges->PrivilegeCount > 0) {
  528. for (i=0; i < Privileges->PrivilegeCount; i++ ) {
  529. DisplayPrivilege( &(Privileges->Privileges[i]) );
  530. }
  531. } else {
  532. printf("(none assigned)\n");
  533. }
  537. return;
  539. }
  542. BOOLEAN
  543. main()
  544. {
  546. NTSTATUS Status;
  547. HANDLE ProcessToken;
  550. TSeVariableInitialization(); // Initialize global variables
  552. printf("\n");
  555. //
  556. // Open our process token
  557. //
  559. Status = NtOpenProcessToken(
  560. NtCurrentProcess(),
  561. TOKEN_QUERY,
  562. &ProcessToken
  563. );
  564. if (!NT_SUCCESS(Status)) {
  565. printf("I'm terribly sorry, but you don't seem to have access to\n");
  566. printf("open your own process's token.\n");
  567. printf("\n");
  568. return(FALSE);
  569. }
  571. printf("Your process level security context is:\n");
  572. printf("\n");
  573. DisplaySecurityContext( ProcessToken );
  576. Status = NtClose( ProcessToken );
  578. return(TRUE);
  579. }