archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
4 Commits
1 Branch
0 Tags
1.5 GiB
Tree: 5c6fe3db62
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '5c6fe3db62'
${ noResults }
windows-server-2003/ds/security/authz/test/wmiaudit/wmi-aztest.cpp

125 lines
3.7 KiB
Raw Normal View History

commiting as it is
4 years ago
  1. DWORD TestAzAudit(
  2. )
  4. {
  5. DWORD dwError = NO_ERROR;
  6. PCWSTR szMsg = L"<unknown>";
  7. AUTHZ_RM_AUDIT_INFO RmAuditInfo;
  8. AUTHZ_CLIENT_AUDIT_INFO ClAuditInfo;
  9. AUTHZ_AUDIT_INFO AuditInfo;
  10. AUTHZI_CLIENT_CONTEXT ClContext;
  12. // -----------------------------------------------------------------
  13. // test AzpInitRmAuditInfo
  14. // -----------------------------------------------------------------
  16. ZeroMemory((PVOID) &RmAuditInfo, sizeof(RmAuditInfo));
  17. RmAuditInfo.szResourceManagerName = L"TestRm";
  19. HANDLE hToken;
  20. BYTE TokenUserInfoBuf[256];
  21. TOKEN_USER* pTokenUserInfo = (TOKEN_USER*) TokenUserInfoBuf;
  22. DWORD dwSize;
  24. if ( OpenProcessToken( GetCurrentProcess(),
  25. TOKEN_READ,
  26. &hToken ))
  27. {
  28. if ( GetTokenInformation( hToken, TokenUser,
  29. pTokenUserInfo, 250,
  30. &dwSize ))
  31. {
  32. dwSize = RtlLengthSid( pTokenUserInfo->User.Sid );
  33. RmAuditInfo.psidRmProcess = AuthzpAlloc( dwSize );
  34. if ( RmAuditInfo.psidRmProcess )
  35. {
  36. CopyMemory( RmAuditInfo.psidRmProcess,
  37. pTokenUserInfo->User.Sid,
  38. dwSize );
  39. RmAuditInfo.dwRmProcessSidSize = dwSize;
  40. }
  41. else
  42. {
  43. szMsg = L"AuthzpAlloc";
  44. goto Error;
  45. }
  46. }
  47. else
  48. {
  49. szMsg = L"GetTokenInformation";
  50. goto GetError;
  51. }
  52. }
  53. else
  54. {
  55. szMsg = L"OpenProcessToken";
  56. goto GetError;
  57. }
  59. RmAuditInfo.hEventSource = INVALID_HANDLE_VALUE;
  60. RmAuditInfo.hAuditEvent = INVALID_HANDLE_VALUE;
  61. RmAuditInfo.hAuditEventPropSubset = INVALID_HANDLE_VALUE;
  63. dwError = AzpInitRmAuditInfo( &RmAuditInfo );
  65. if ( dwError != NO_ERROR )
  66. {
  67. szMsg = L"AzpInitRmAuditInfo";
  68. goto Error;
  69. }
  71. // -----------------------------------------------------------------
  72. // test AzpInitClientAuditInfo
  73. // -----------------------------------------------------------------
  75. ZeroMemory((PVOID) &ClAuditInfo, sizeof(ClAuditInfo));
  77. ClAuditInfo.psidClient = RmAuditInfo.psidRmProcess;
  78. ClAuditInfo.dwClientSidSize = RmAuditInfo.dwRmProcessSidSize;
  80. ClAuditInfo.hAuditEvent = INVALID_HANDLE_VALUE;
  81. ClAuditInfo.hAuditEventPropSubset = INVALID_HANDLE_VALUE;
  84. dwError = AzpInitClientAuditInfo( &RmAuditInfo, &ClAuditInfo );
  86. if ( dwError != NO_ERROR )
  87. {
  88. szMsg = L"AzpInitClientAuditInfo";
  89. goto Error;
  90. }
  92. // -----------------------------------------------------------------
  93. // test AzpGenerateAuditEvent
  94. // -----------------------------------------------------------------
  96. ZeroMemory((PVOID) &AuditInfo, sizeof(AuditInfo));
  98. AuditInfo.hAuditEvent = INVALID_HANDLE_VALUE;
  99. AuditInfo.hAuditEventPropSubset = INVALID_HANDLE_VALUE;
  101. AuditInfo.szOperationType = L"kkOperation";
  102. AuditInfo.szObjectType = L"kkObjectType";
  103. AuditInfo.szObjectName = L"kkObjectName";
  105. ZeroMemory((PVOID) &ClContext, sizeof(ClContext));
  107. dwError = AzpGenerateAuditEvent( &RmAuditInfo, &ClAuditInfo, &ClContext,
  108. &AuditInfo, 0x1122 );
  110. if ( dwError != NO_ERROR )
  111. {
  112. szMsg = L"AzpGenerateAuditEvent";
  113. goto Error;
  114. }
  116. Finish:
  117. return dwError;
  119. GetError:
  120. dwError = GetLastError();
  122. Error:
  123. (void) wprintf( L"%s: 0x%x\n", szMsg, dwError );
  124. goto Finish;
  125. }