archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
4 Commits
1 Branch
0 Tags
1.5 GiB
Tree: 5c6fe3db62
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '5c6fe3db62'
${ noResults }
windows-server-2003/base/ntos/se/tse.c

579 lines
16 KiB
Raw Normal View History

commiting as it is
4 years ago
  1. //////////////////////////////////////////////////////////////////////////
  2. // WARNING - WARNING - WARNING - WARNING - WARNING - WARNING - WARNING //
  3. // //
  4. // This test file is not current with the security implementation. //
  5. // This file contains references to data types and APIs that do not //
  6. // exist. //
  7. // //
  8. //////////////////////////////////////////////////////////////////////////
  10. /*++
  11. Copyright (c) 1989 Microsoft Corporation
  13. Module Name:
  15. tse.c
  17. Abstract:
  19. Test program for the SE subcomponent of the NTOS project
  21. Author:
  23. Gary Kimura (garyki) 20-Nov-1989
  25. Revision History:
  27. --*/
  29. #include <stdio.h>
  31. #include "sep.h"
  32. #include <zwapi.h>
  34. BOOLEAN SeTest();
  36. #include "ttoken.c"
  38. int
  39. main(
  40. int argc,
  41. char *argv[]
  42. )
  43. {
  44. VOID KiSystemStartup();
  46. TestFunction = SeTest;
  47. KiSystemStartup();
  48. return( 0 );
  49. }
  52. BOOLEAN
  53. SeTest()
  54. {
  55. BOOLEAN TestMakeSystemToken();
  56. BOOLEAN TestTokenCopy();
  57. BOOLEAN TestTokenSize();
  58. BOOLEAN TestDefaultObjectMethod();
  59. BOOLEAN TestCaptureSecurityDescriptor();
  60. BOOLEAN TestAssignSecurity();
  61. BOOLEAN TestAccessCheck();
  62. BOOLEAN TestGenerateMessage();
  64. DbgPrint("Start SeTest()\n");
  66. if (!TestMakeSystemToken()) {
  67. DbgPrint("TestMakeSystemToken() Error\n");
  68. return FALSE;
  69. }
  70. if (!TestTokenCopy()) {
  71. DbgPrint("TestTokenCopy() Error\n");
  72. return FALSE;
  73. }
  74. if (!TestTokenSize()) {
  75. DbgPrint("TestTokenSize() Error\n");
  76. return FALSE;
  77. }
  78. if (!TestDefaultObjectMethod()) {
  79. DbgPrint("TestDefaultObjectMethod() Error\n");
  80. return FALSE;
  81. }
  82. if (!TestCaptureSecurityDescriptor()) {
  83. DbgPrint("TestCaptureSecurityDescriptor() Error\n");
  84. return FALSE;
  85. }
  86. if (!TestAssignSecurity()) {
  87. DbgPrint("TestAssignSecurity() Error\n");
  88. return FALSE;
  89. }
  90. if (!TestAccessCheck()) {
  91. DbgPrint("TestAccessCheck() Error\n");
  92. return FALSE;
  93. }
  94. if (!TestGenerateMessage()) {
  95. DbgPrint("TestGenerateMessage() Error\n");
  96. return FALSE;
  97. }
  99. DbgPrint("End SeTest()\n");
  100. return TRUE;
  101. }
  104. BOOLEAN
  105. TestMakeSystemToken()
  106. {
  107. PACCESS_TOKEN Token;
  109. //
  110. // Make the system token
  111. //
  113. Token = (PACCESS_TOKEN)SeMakeSystemToken( PagedPool );
  115. //
  116. // and check its contents
  117. //
  119. if (!SepIsSystemToken( Token, ((ACCESS_TOKEN *)Token)->Size )) {
  120. DbgPrint("SepIsSystemToken Error\n");
  121. return FALSE;
  122. }
  124. ExFreePool( Token );
  126. return TRUE;
  127. }
  130. BOOLEAN
  131. TestTokenCopy()
  132. {
  133. PACCESS_TOKEN InToken;
  134. PACCESS_TOKEN OutToken;
  136. NTSTATUS Status;
  138. ULONG i;
  140. //
  141. // Allocate Buffers, and build a token
  142. //
  144. InToken = (PACCESS_TOKEN)ExAllocatePool(PagedPool, 512);
  145. OutToken = (PACCESS_TOKEN)ExAllocatePool(PagedPool, 512);
  147. BuildToken( Fred, InToken );
  149. //
  150. // Make a copy of the token
  151. //
  153. if (!NT_SUCCESS(Status = SeTokenCopy( InToken, OutToken, 512))) {
  154. DbgPrint("SeTokenCopy Error: %8lx\n", Status);
  155. return FALSE;
  156. }
  158. //
  159. // check both tokens for equality
  160. //
  162. for (i = 0; i < ((ACCESS_TOKEN *)InToken)->Size; i += 1) {
  163. if (*((PUCHAR)InToken + 1) != *((PUCHAR)OutToken + 1)) {
  164. DbgPrint("Token copy error\n");
  165. return FALSE;
  166. }
  167. }
  169. ExFreePool( InToken );
  170. ExFreePool( OutToken );
  172. return TRUE;
  173. }
  176. BOOLEAN
  177. TestTokenSize()
  178. {
  179. PACCESS_TOKEN Token;
  181. //
  182. // Allocate and build a token
  183. //
  185. Token = (PACCESS_TOKEN)ExAllocatePool(PagedPool, 512);
  187. BuildToken( Wilma, Token );
  189. //
  190. // Get the token size
  191. //
  193. if (SeTokenSize(Token) != ((ACCESS_TOKEN *)Token)->Size) {
  194. DbgPrint("SeTokenSize error\n");
  195. return FALSE;
  196. }
  198. ExFreePool( Token );
  200. return TRUE;
  201. }
  204. BOOLEAN
  205. TestDefaultObjectMethod()
  206. {
  207. SECURITY_DESCRIPTOR SecurityDescriptor;
  208. PSECURITY_DESCRIPTOR Buffer;
  209. PACL Acl;
  210. NTSTATUS Status;
  211. PSECURITY_DESCRIPTOR ObjectsSecurityDescriptor;
  212. ULONG Length;
  214. Acl = (PACL)ExAllocatePool( PagedPool, 1024 );
  215. Buffer = (PSECURITY_DESCRIPTOR)ExAllocatePool( PagedPool, 1024 );
  217. BuildAcl( Fred, Acl, 1024 );
  218. DiscretionarySecurityDescriptor( &SecurityDescriptor, Acl );
  220. ObjectsSecurityDescriptor = NULL;
  222. //
  223. // Set the descriptor
  224. //
  226. if (!NT_SUCCESS(Status = SeDefaultObjectMethod( NULL,
  227. SetSecurityDescriptor,
  228. &SecurityDescriptor,
  229. 0,
  230. NULL,
  231. &ObjectsSecurityDescriptor,
  232. PagedPool ))) {
  234. DbgPrint("SeDefaultObjectMethod setting error: %8lx\n", Status );
  235. return FALSE;
  236. }
  238. //
  239. // Query the descriptor
  240. //
  242. if (!NT_SUCCESS(Status = SeDefaultObjectMethod( NULL,
  243. QuerySecurityDescriptor,
  244. Buffer,
  245. AllAclInformation,
  246. &Length,
  247. &ObjectsSecurityDescriptor,
  248. PagedPool ))) {
  250. DbgPrint("SeDefaultObjectMethod reading error: %8lx\n", Status );
  251. return FALSE;
  252. }
  254. //
  255. // Replace the descriptor
  256. //
  258. BuildAcl( Wilma, Acl, 1024 );
  260. if (!NT_SUCCESS(Status = SeDefaultObjectMethod( NULL,
  261. SetSecurityDescriptor,
  262. &SecurityDescriptor,
  263. AllAclInformation,
  264. &Length,
  265. &ObjectsSecurityDescriptor,
  266. PagedPool ))) {
  268. DbgPrint("SeDefaultObjectMethod reading error: %8lx\n", Status );
  269. return FALSE;
  270. }
  272. //
  273. // Delete the descriptor
  274. //
  276. if (!NT_SUCCESS(Status = SeDefaultObjectMethod( NULL,
  277. DeleteSecurityDescriptor,
  278. NULL,
  279. 0,
  280. NULL,
  281. &ObjectsSecurityDescriptor,
  282. PagedPool ))) {
  284. DbgPrint("SeDefaultObjectMethod deleting error: %8lx\n", Status );
  285. return FALSE;
  286. }
  288. ExFreePool(Acl);
  289. ExFreePool(Buffer);
  291. return TRUE;
  292. }
  295. BOOLEAN
  296. TestCaptureSecurityDescriptor()
  297. {
  298. SECURITY_DESCRIPTOR SecurityDescriptor;
  299. PACL Sacl;
  300. PACL Dacl;
  301. PSECURITY_DESCRIPTOR NewDescriptor;
  302. NTSTATUS Status;
  304. Sacl = (PACL)ExAllocatePool( PagedPool, 1024 );
  305. Dacl = (PACL)ExAllocatePool( PagedPool, 1024 );
  306. BuildAcl( Pebbles, Sacl, 1024 );
  307. BuildAcl( Barney, Dacl, 1024 );
  309. DiscretionarySecurityDescriptor( &SecurityDescriptor, Dacl );
  310. SecurityDescriptor.SecurityInformationClass = AllAclInformation;
  311. SecurityDescriptor.SystemAcl = Sacl;
  313. //
  314. // Capture kernel mode and don't force
  315. //
  317. if (!NT_SUCCESS(Status = SeCaptureSecurityDescriptor( &SecurityDescriptor,
  318. KernelMode,
  319. PagedPool,
  320. FALSE,
  321. &NewDescriptor ))) {
  322. DbgPrint("SeCapture Error, KernelMode, FALSE : %8lx\n", Status );
  323. return FALSE;
  324. }
  326. //
  327. // Capture kernel mode and force
  328. //
  330. if (!NT_SUCCESS(Status = SeCaptureSecurityDescriptor( &SecurityDescriptor,
  331. KernelMode,
  332. PagedPool,
  333. TRUE,
  334. &NewDescriptor ))) {
  335. DbgPrint("SeCapture Error, KernelMode, TRUE : %8lx\n", Status );
  336. return FALSE;
  337. } else {
  338. ExFreePool( NewDescriptor );
  339. }
  341. //
  342. // Capture user mode
  343. //
  345. if (!NT_SUCCESS(Status = SeCaptureSecurityDescriptor( &SecurityDescriptor,
  346. UserMode,
  347. PagedPool,
  348. TRUE,
  349. &NewDescriptor ))) {
  350. DbgPrint("SeCapture Error, UserMode, FALSE : %8lx\n", Status );
  351. return FALSE;
  352. } else {
  353. ExFreePool( NewDescriptor );
  354. }
  356. return TRUE;
  357. }
  359. BOOLEAN
  360. TestAssignSecurity()
  361. {
  362. SECURITY_DESCRIPTOR SecurityDescriptor;
  363. PACL Acl;
  365. PACCESS_TOKEN Token;
  367. GENERIC_MAPPING GenericMapping;
  369. PSECURITY_DESCRIPTOR NewDescriptor;
  371. NTSTATUS Status;
  373. Acl = (PACL)ExAllocatePool( PagedPool, 1024 );
  374. BuildAcl( Fred, Acl, 1024 );
  376. Token = (PACCESS_TOKEN)ExAllocatePool( PagedPool, 512 );
  377. BuildToken( Fred, Token );
  379. DiscretionarySecurityDescriptor( &SecurityDescriptor, Acl );
  381. //
  382. // Kernel mode, non dir, and no new
  383. //
  385. NewDescriptor = NULL;
  386. if (!NT_SUCCESS(Status = SeAssignSecurity( &SecurityDescriptor,
  387. &NewDescriptor,
  388. FALSE,
  389. Token,
  390. &GenericMapping,
  391. KernelMode ))) {
  392. DbgPrint("SeAssign Error NoNew, NoDir, Kernel : %8lx\n", Status );
  393. return FALSE;
  394. }
  396. //
  397. // Kernel mode, non dir, and new
  398. //
  400. if (!NT_SUCCESS(Status = SeAssignSecurity( &SecurityDescriptor,
  401. &NewDescriptor,
  402. FALSE,
  403. Token,
  404. &GenericMapping,
  405. KernelMode ))) {
  406. DbgPrint("SeAssign Error New, NoDir, Kernel : %8lx\n", Status );
  407. return FALSE;
  408. }
  410. //
  411. // Kernel mode, dir, and no new
  412. //
  414. NewDescriptor = NULL;
  415. if (!NT_SUCCESS(Status = SeAssignSecurity( &SecurityDescriptor,
  416. &NewDescriptor,
  417. TRUE,
  418. Token,
  419. &GenericMapping,
  420. KernelMode ))) {
  421. DbgPrint("SeAssign Error NoNew, Dir, Kernel : %8lx\n", Status );
  422. return FALSE;
  423. }
  425. //
  426. // Kernel mode, dir, and new
  427. //
  429. if (!NT_SUCCESS(Status = SeAssignSecurity( &SecurityDescriptor,
  430. &NewDescriptor,
  431. TRUE,
  432. Token,
  433. &GenericMapping,
  434. KernelMode ))) {
  435. DbgPrint("SeAssign Error New, Dir, Kernel : %8lx\n", Status );
  436. return FALSE;
  437. }
  440. //
  441. // User mode, non dir, and no new
  442. //
  444. NewDescriptor = NULL;
  445. if (!NT_SUCCESS(Status = SeAssignSecurity( &SecurityDescriptor,
  446. &NewDescriptor,
  447. FALSE,
  448. Token,
  449. &GenericMapping,
  450. UserMode ))) {
  451. DbgPrint("SeAssign Error NoNew, NoDir, User : %8lx\n", Status );
  452. return FALSE;
  453. }
  455. //
  456. // User mode, non dir, and new
  457. //
  459. if (!NT_SUCCESS(Status = SeAssignSecurity( &SecurityDescriptor,
  460. &NewDescriptor,
  461. FALSE,
  462. Token,
  463. &GenericMapping,
  464. UserMode ))) {
  465. DbgPrint("SeAssign Error New, NoDir, User : %8lx\n", Status );
  466. return FALSE;
  467. }
  469. //
  470. // User mode, dir, and no new
  471. //
  473. NewDescriptor = NULL;
  474. if (!NT_SUCCESS(Status = SeAssignSecurity( &SecurityDescriptor,
  475. &NewDescriptor,
  476. TRUE,
  477. Token,
  478. &GenericMapping,
  479. UserMode ))) {
  480. DbgPrint("SeAssign Error NoNew, Dir, User : %8lx\n", Status );
  481. return FALSE;
  482. }
  484. //
  485. // User mode, dir, and new
  486. //
  488. if (!NT_SUCCESS(Status = SeAssignSecurity( &SecurityDescriptor,
  489. &NewDescriptor,
  490. TRUE,
  491. Token,
  492. &GenericMapping,
  493. UserMode ))) {
  494. DbgPrint("SeAssign Error New, Dir, User : %8lx\n", Status );
  495. return FALSE;
  496. }
  498. return TRUE;
  499. }
  502. BOOLEAN
  503. TestAccessCheck()
  504. {
  505. SECURITY_DESCRIPTOR SecurityDescriptor;
  506. PACL Acl;
  508. PACCESS_TOKEN Token;
  510. Acl = (PACL)ExAllocatePool( PagedPool, 1024 );
  511. BuildAcl( Fred, Acl, 1024 );
  513. Token = (PACCESS_TOKEN)ExAllocatePool( PagedPool, 512 );
  514. BuildToken( Fred, Token );
  516. DiscretionarySecurityDescriptor( &SecurityDescriptor, Acl );
  518. //
  519. // Test should be successful based on aces
  520. //
  522. if (!SeAccessCheck( &SecurityDescriptor,
  523. Token,
  524. 0x00000001,
  525. NULL,
  526. UserMode )) {
  527. DbgPrint("SeAccessCheck Error should allow access\n");
  528. return FALSE;
  529. }
  531. //
  532. // Test should be successful based on owner
  533. //
  535. if (!SeAccessCheck( &SecurityDescriptor,
  536. Token,
  537. READ_CONTROL,
  538. &FredGuid,
  539. UserMode )) {
  540. DbgPrint("SeAccessCheck Error should allow owner\n");
  541. return FALSE;
  542. }
  544. //
  545. // Test should be unsuccessful based on aces
  546. //
  548. if (SeAccessCheck( &SecurityDescriptor,
  549. Token,
  550. 0x0000000f,
  551. &FredGuid,
  552. UserMode )) {
  553. DbgPrint("SeAccessCheck Error shouldn't allow access\n");
  554. return FALSE;
  555. }
  557. //
  558. // Test should be unsuccessful based on non owner
  559. //
  561. if (SeAccessCheck( &SecurityDescriptor,
  562. Token,
  563. READ_CONTROL,
  564. &BarneyGuid,
  565. UserMode )) {
  566. DbgPrint("SeAccessCheck Error shouldn't allow non owner access\n");
  567. return FALSE;
  568. }
  570. return TRUE;
  571. }
  574. BOOLEAN
  575. TestGenerateMessage()
  576. {
  577. return TRUE;
  578. }
  580.