archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
4 Commits
1 Branch
0 Tags
1.5 GiB
Branch: master
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'master'
${ noResults }
windows-server-2003/inetcore/digest/test/poptest.cxx

464 lines
16 KiB
Raw Permalink Normal View History

commiting as it is
4 years ago
  1. #include <windows.h>
  3. #define SECURITY_WIN32
  5. #include <sspi.h>
  6. #include <issperr.h>
  7. #include <security.h>
  9. #define SSP_SPM_NT_DLL "security.dll"
  10. #define SSP_SPM_WIN95_DLL "secur32.dll"
  12. #define MAX_OUTPUT_BUFFER 4096
  14. SEC_WINNT_AUTH_IDENTITY SecId;
  15. HINSTANCE hSecLib;
  16. PSecurityFunctionTable pFuncTbl = NULL;
  18. // Preliminary func calls.
  19. VOID InitializeSecurityInterface(BOOL fDirect);
  20. BOOL HaveDigest();
  22. // 3 Main SSPI calls.
  24. // AcquireCredentialsHandle
  25. SECURITY_STATUS ACH(PCredHandle phCred);
  27. // InitializeSecurityContext
  28. SECURITY_STATUS ISC(PCredHandle phCred,
  29. PCtxtHandle phCtxt,
  30. PCtxtHandle phNewCtxt,
  31. DWORD fContextReq,
  32. LPSTR szChallenge,
  33. LPSTR szResponse,
  34. LPSTR szUser,
  35. LPSTR szPass);
  37. // FreeCredentialsHandle
  38. SECURITY_STATUS FCH(PCredHandle phCred);
  40. //--------------------------------------
  41. // main
  42. //--------------------------------------
  43. INT main()
  44. {
  45. DWORD dwReturn = 0;
  46. SECURITY_STATUS ssResult;
  48. // Get (global) dispatch table.
  49. InitializeSecurityInterface(FALSE);
  51. // Check to see if we have digest.
  52. if (!HaveDigest())
  53. {
  54. dwReturn = 1;
  55. goto exit;
  56. }
  58. // Credential handle and pointer.
  59. CredHandle hCred;
  60. CtxtHandle hCtxt;
  62. // **** Call AcquireCredentialsHandle with no credential ***
  63. ACH(&hCred);
  65. // Challenge and response buffers. As usual, we dump into an
  66. // output buffer allocated on the stack.
  67. LPSTR szChallenge;
  68. CHAR szResponse[MAX_OUTPUT_BUFFER];
  71. // First call to ISC is with zero input, expecting a 0 DWORD output buffer, as
  72. // we expect with POP clients
  73. szChallenge = NULL;
  75. // Make first call to ISC with null input - expect DWORD 0 output.
  76. ssResult = ISC( &hCred, // Cred from logging on.
  77. NULL, // Ctxt not specified first time.
  78. &hCtxt, // Output context.
  79. 0, // flags auth from cache, but not meaningful here.
  80. szChallenge, // NULL Server challenge header.
  81. szResponse, // Response buffer.
  82. NULL, // No user needed.
  83. NULL); // No pass needed.
  86. // Expect 0 DWORD output and SEC_I_CONTINUE_NEEDED.
  87. if (ssResult != SEC_I_CONTINUE_NEEDED)
  88. {
  89. DebugBreak();
  90. }
  93. // Free cred handle.
  94. FCH(&hCred);
  96. // Re-acquire cred handle.
  97. ACH(&hCred);
  99. // Now setup challenge from server for realm "Microsoft Passport" which will use the
  100. // credentials user="[email protected]", pass = "jpoley"
  101. szChallenge = "realm=\"Microsoft Passport\", algorithm = \"MD5-sess\", qop=\"auth\", nonce=\"0123456789abcdef\"";
  103. // Authenticate using user = "[email protected]", pass = "jpoley"
  104. ssResult = ISC( &hCred, // Cred from logging on.
  105. NULL, // Ctxt not specified first time.
  106. &hCtxt, // Output context.
  107. ISC_REQ_USE_SUPPLIED_CREDS, // Use the credentials supplied.
  108. szChallenge, // Server challenge header.
  109. szResponse, // Response buffer,
  110. "[email protected]", // user
  111. "jpoley" // pass
  112. );
  115. // We have just successfully authenticated for [email protected]. In doing so,
  116. // we have created a credential for [email protected] in the digest cred cache.
  117. if (ssResult != SEC_E_OK)
  118. {
  119. DebugBreak();
  120. }
  123. // Free cred handle.
  124. FCH(&hCred);
  126. // Re-acquire cred handle.
  127. ACH(&hCred);
  130. // Quick confirmation that we have a credential for "[email protected],
  131. // we'll attempt to auth to a "Microsoft Passport" challenge without supplying
  132. // any creds - this should pull jpoley creds from
  133. // the cache and authomatically generate an auth header.
  134. ssResult = ISC( &hCred, // Cred from logging on.
  135. NULL, // Ctxt not specified first time.
  136. &hCtxt, // Output context.
  137. 0, // auth from cache
  138. szChallenge, // Server challenge header.
  139. szResponse, // Response buffer,
  140. NULL, // Not passing user
  141. NULL // Not passing in pass
  142. );
  145. // Should have authed successfully.
  146. if (ssResult != SEC_E_OK)
  147. {
  148. DebugBreak();
  149. }
  152. // Free cred handle.
  153. FCH(&hCred);
  155. // Re-acquire cred handle.
  156. ACH(&hCred);
  158. // Now setup a challange from server for realm "Microsoft Passport (we'll use
  159. // the previouse one but this time we wish to authyenticate on behalf of a new
  160. // user "[email protected]" and we DON'T HAVE A PASSWORD.
  162. szChallenge = "realm=\"Microsoft Passport\", algorithm = \"MD5-sess\", qop=\"auth\", nonce=\"0123456789abcdef\"";
  164. // Authenticate
  165. ssResult = ISC( &hCred, // Cred from logging on.
  166. NULL, // Ctxt not specified first time.
  167. &hCtxt, // Output context.
  168. 0, // Auth from cache.
  169. szChallenge, // Server challenge header.
  170. szResponse, // Response buffer,
  171. "[email protected]", // user
  172. NULL // No password!
  173. );
  175. // We didn't have any credentials, so we better not have succeeded.
  176. if (ssResult != SEC_E_NO_CREDENTIALS)
  177. {
  178. DebugBreak();
  179. }
  181. // Free cred handle.
  182. FCH(&hCred);
  184. // Re-acquire cred handle.
  185. ACH(&hCred);
  187. // Prompt for credentials for [email protected]. Since the challenge contains the
  188. // realm "Microsoft Passport", the credential created here will overwrite the
  189. // credential created for [email protected], and generate the authorization string.
  190. ssResult = ISC( &hCred, // Cred from logging on.
  191. NULL, // Ctxt not specified first time.
  192. &hCtxt, // Output context.
  193. ISC_REQ_PROMPT_FOR_CREDS, // prompt for creds for [email protected]
  194. szChallenge, // Server challenge header.
  195. szResponse, // Response buffer.
  196. "[email protected]", // user to prompt for.
  197. NULL // Again, no password, we're prompting.
  198. );
  201. // We should have succeeded in collecting creds for [email protected] and
  202. // generating the authorization string.
  203. if (ssResult != SEC_E_OK)
  204. {
  205. DebugBreak();
  206. }
  209. // Free cred handle.
  210. FCH(&hCred);
  212. // Re-acquire cred handle.
  213. ACH(&hCred);
  216. // Quick confirmation that we have a credential for "[email protected]"
  217. // we'll attempt to auth to a "Microsoft Passport" challenge without supplying
  218. // any creds - this should pull alex creds from
  219. // the cache and authomatically generate an auth header.
  220. ssResult = ISC( &hCred, // Cred from logging on.
  221. NULL, // Ctxt not specified first time.
  222. &hCtxt, // Output context.
  223. 0, // auth from cache
  224. szChallenge, // Server challenge header.
  225. szResponse, // Response buffer,
  226. NULL, // Not passing user
  227. NULL // Not passing in pass
  228. );
  231. // Should have authed successfully.
  232. if (ssResult != SEC_E_OK)
  233. {
  234. DebugBreak();
  235. }
  238. // Free cred handle.
  239. FCH(&hCred);
  241. if (hSecLib)
  242. FreeLibrary(hSecLib);
  244. exit:
  245. return dwReturn;
  246. }
  249. // Main SSPI calls.
  252. //--------------------------------------
  253. // ACH
  254. //--------------------------------------
  255. SECURITY_STATUS ACH(PCredHandle phCred)
  256. {
  257. SECURITY_STATUS ssResult;
  259. // ***** SSPI CALL *****
  260. ssResult = (*(pFuncTbl->AcquireCredentialsHandleA))
  261. (NULL, // pszPrinciple NULL
  262. "Digest", // pszPackageName (Package name)
  263. SECPKG_CRED_OUTBOUND, // dwCredentialUse (client call)
  264. NULL, // pvLogonID (not used)
  265. NULL, // pAuthData (not used)
  266. NULL, // pGetKeyFn (not used)
  267. 0, // pvGetKeyArgument (not used)
  268. phCred, // phCredential (credential returned)
  269. NULL); // PTimeStamp (not used)
  271. return ssResult;
  272. }
  274. //--------------------------------------
  275. // ISC
  276. //--------------------------------------
  277. SECURITY_STATUS ISC(PCredHandle phCred,
  278. PCtxtHandle phCtxt,
  279. PCtxtHandle phNewCtxt,
  280. DWORD fContextReq,
  281. LPSTR szChallenge,
  282. LPSTR szResponse,
  283. LPSTR szUser,
  284. LPSTR szPass)
  286. {
  289. // If the client is not passing in user/pass
  290. // (ie, normal operation) then the count of
  291. // buffers passed in is always 1.
  292. #define SEC_BUFFER_NUM_NORMAL_BUFFERS 1
  294. // These are the indicese specifically expected
  295. // by the digest package
  296. #define SEC_BUFFER_CHALLENGE_INDEX 0
  297. #define SEC_BUFFER_USERNAME_INDEX 1
  298. #define SEC_BUFFER_PASSWORD_INDEX 2
  299. #define SEC_BUFFER_NUM_EXTENDED_BUFFERS 3
  301. SECURITY_STATUS ssResult;
  303. // Input buffers and descriptor.
  304. SecBuffer sbIn[SEC_BUFFER_NUM_EXTENDED_BUFFERS];
  305. SecBufferDesc sbdIn;
  306. PSecBufferDesc psbdIn;
  308. // Calling with challenge; expect SEC_E_OK or SEC_E_NO_CREDENTIALS
  309. if (szChallenge)
  310. {
  311. // Setup the challenge input buffer always (0th buffer)
  312. sbIn[SEC_BUFFER_CHALLENGE_INDEX].pvBuffer = szChallenge;
  313. sbIn[SEC_BUFFER_CHALLENGE_INDEX].cbBuffer = strlen(szChallenge);
  314. sbIn[SEC_BUFFER_CHALLENGE_INDEX].BufferType = SECBUFFER_TOKEN;
  316. // If we have a user, setup the user buffer (1st buffer)
  317. sbIn[SEC_BUFFER_USERNAME_INDEX].pvBuffer = szUser ? szUser : NULL;
  318. sbIn[SEC_BUFFER_USERNAME_INDEX].cbBuffer = szUser ? strlen(szUser) : NULL;
  319. sbIn[SEC_BUFFER_USERNAME_INDEX].BufferType = SECBUFFER_TOKEN;
  321. // If we have a password, setup the password buffer (2nd buffer for
  322. // a total of 3 buffers passed in (challenge + user + pass)
  323. sbIn[SEC_BUFFER_PASSWORD_INDEX].pvBuffer = szPass ? szPass : NULL;
  324. sbIn[SEC_BUFFER_PASSWORD_INDEX].cbBuffer = szPass ? strlen(szPass) : NULL;
  325. sbIn[SEC_BUFFER_PASSWORD_INDEX].BufferType = SECBUFFER_TOKEN;
  327. sbdIn.pBuffers = sbIn;
  329. // If either or both user and pass passed in, set num input buffers to 3
  330. // (SEC_BUFFER_NUM_EXTENDED_BUFFERS)
  331. if (szUser || szPass)
  332. sbdIn.cBuffers = SEC_BUFFER_NUM_EXTENDED_BUFFERS;
  334. // else we're just passing in the one challenge buffer (0th buffer as usual)
  335. else
  336. sbdIn.cBuffers = SEC_BUFFER_NUM_NORMAL_BUFFERS;
  338. psbdIn = &sbdIn;
  340. }
  341. else
  342. {
  343. // Calling withOUT challenge; expect SEC_I_CONTINUE_NEEDED;
  344. psbdIn = NULL;
  345. }
  347. // Output buffer and descriptor.
  348. SecBuffer sbOut[1];
  349. SecBufferDesc sbdOut;
  351. sbOut[0].pvBuffer = szResponse;
  352. sbOut[0].cbBuffer = MAX_OUTPUT_BUFFER;
  353. sbOut[0].BufferType = SECBUFFER_TOKEN;
  354. sbdOut.pBuffers = sbOut;
  355. sbdOut.cBuffers = 1;
  357. // ***** SSPI CALL *****
  358. ssResult = (*(pFuncTbl->InitializeSecurityContextA))
  359. (phCred, // phCredential (from AcquireCredentialsHandle)
  360. phCtxt, // phContext (NULL on first call, phNewCtxt on subsequent calls).
  361. NULL, // pszTargetName (not used)
  362. fContextReq, // fContextReq (auth from cache, prompt or auth using supplied creds)
  363. 0, // Reserved1 (not used)
  364. 0, // TargetDataRep (not used)
  365. psbdIn, // PSecBufDesc (input buffer descriptor)
  366. 0, // Reserved2 (not used)
  367. phNewCtxt, // phNewContext (should be passed back as phCtxt on subsequent calls)
  368. &sbdOut, // pOutput (output buffer descriptor)
  369. NULL, // pfContextAttr (pfContextAttr, not used)
  370. NULL); // ptsExpiry (not used)
  372. return ssResult;
  373. }
  377. //--------------------------------------
  378. // FCH
  379. //--------------------------------------
  380. SECURITY_STATUS FCH(PCredHandle phCred)
  381. {
  382. SECURITY_STATUS ssResult;
  384. // ***** SSPI CALL *****
  385. ssResult = (*(pFuncTbl->FreeCredentialsHandle))(phCred);
  387. return ssResult;
  388. }
  391. // Utility calls.
  395. //--------------------------------------
  396. // InitializeSecurityInterface
  397. //--------------------------------------
  398. VOID InitializeSecurityInterface(BOOL fDirect)
  399. {
  400. INIT_SECURITY_INTERFACE addrProcISI = NULL;
  401. OSVERSIONINFO VerInfo;
  402. CHAR szDLL[MAX_PATH];
  404. if (!fDirect)
  405. {
  406. VerInfo.dwOSVersionInfoSize = sizeof (OSVERSIONINFO);
  408. GetVersionEx (&VerInfo);
  409. if (VerInfo.dwPlatformId == VER_PLATFORM_WIN32_NT)
  410. {
  411. lstrcpy (szDLL, SSP_SPM_NT_DLL);
  412. }
  413. else if (VerInfo.dwPlatformId == VER_PLATFORM_WIN32_WINDOWS)
  414. {
  415. lstrcpy (szDLL, SSP_SPM_WIN95_DLL);
  416. }
  417. }
  418. else
  419. {
  420. strcpy(szDLL, "d:\\nt\\private\\inet\\digest\\objd\\i386\\digest.dll");
  421. }
  423. hSecLib = LoadLibrary (szDLL);
  425. addrProcISI = (INIT_SECURITY_INTERFACE) GetProcAddress( hSecLib,
  426. SECURITY_ENTRYPOINT_ANSI);
  428. pFuncTbl = (*addrProcISI)();
  429. }
  432. //--------------------------------------
  433. // HaveDigest
  434. //--------------------------------------
  435. BOOL HaveDigest()
  436. {
  437. SECURITY_STATUS ssResult;
  438. DWORD cPackages;
  439. PSecPkgInfoA pSecPkgInfo;
  440. BOOL fHaveDigest;
  442. // ***** SSPI call *****
  443. ssResult = (*(pFuncTbl->EnumerateSecurityPackagesA))(&cPackages, &pSecPkgInfo);
  445. // Check if we have digest.
  446. fHaveDigest = FALSE;
  447. if (ssResult == SEC_E_OK)
  448. {
  449. for (DWORD i = 0; i < cPackages; i++)
  450. {
  451. if (strcmp(pSecPkgInfo[i].Name, "Digest") == 0)
  452. {
  453. fHaveDigest = TRUE;
  454. break;
  455. }
  456. }
  457. }
  458. return fHaveDigest;
  459. }