archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
4 Commits
1 Branch
0 Tags
1.5 GiB
Tree: 5c6fe3db62
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '5c6fe3db62'
${ noResults }
windows-server-2003/ds/security/base/lsa/server/exts/berdump.c

911 lines
20 KiB
Raw Normal View History

commiting as it is
4 years ago
  1. #include <nt.h>
  2. #include <ntrtl.h>
  3. #include <nturtl.h>
  4. #include <windows.h>
  5. #include <ntsdexts.h>
  6. #include <stdio.h>
  7. #include <stdlib.h>
  8. #include <string.h>
  10. #include "ber.h"
  12. #define iso_member 0x2a, // iso(1) memberbody(2)
  13. #define us 0x86, 0x48, // us(840)
  14. #define rsadsi 0x86, 0xf7, 0x0d, // rsadsi(113549)
  15. #define pkcs 0x01, // pkcs(1)
  17. #define rsa_ iso_member us rsadsi
  18. #define rsa_len 6
  19. #define rsa_text "iso(2) member-body(2) us(840) rsadsi(113549) "
  20. #define pkcs_1 iso_member us rsadsi pkcs
  21. #define pkcs_len 7
  22. #define pkcs_text "iso(2) member-body(2) us(840) rsadsi(113549) pkcs(1) "
  25. #define joint_iso_ccitt_ds 0x55,
  26. #define attributetype 0x04,
  28. #define attributeType joint_iso_ccitt_ds attributetype
  29. #define attrtype_len 2
  31. typedef struct _ObjectId {
  32. UCHAR Sequence[16];
  33. DWORD SequenceLen;
  34. PSTR Name;
  35. } ObjectId;
  37. ObjectId KnownObjectIds[] = {
  38. { {pkcs_1 1, 1}, pkcs_len + 2, pkcs_text "RSA"},
  39. { {pkcs_1 1, 2}, pkcs_len + 2, pkcs_text "MD2/RSA"},
  40. { {pkcs_1 1, 4}, pkcs_len + 2, pkcs_text "MD5/RSA"},
  41. { {rsa_ 3, 4}, rsa_len + 2, rsa_text "RC4"},
  42. { {attributeType 3}, attrtype_len + 1, "CN="},
  43. { {attributeType 6}, attrtype_len + 1, "C="},
  44. { {attributeType 7}, attrtype_len + 1, "L="},
  45. { {attributeType 8}, attrtype_len + 1, "S="},
  46. { {attributeType 10}, attrtype_len + 1, "O="},
  47. { {attributeType 11}, attrtype_len + 1, "OU="},
  48. };
  50. ObjectId KnownPrefixes[] = {
  51. { {pkcs_1}, pkcs_len, pkcs_text},
  52. { {iso_member us rsadsi}, pkcs_len - 1, "iso(2) member-body(2) us(840) rsadsi(113549) "},
  53. { {iso_member us}, pkcs_len - 4, "iso(2) member-body(2) us(840) "},
  54. { {iso_member}, pkcs_len - 6, "iso(2) member-body(2) " }
  55. };
  58. typedef struct _NameTypes {
  59. PSTR Prefix;
  60. UCHAR Sequence[8];
  61. DWORD SequenceLen;
  62. } NameTypes;
  64. NameTypes KnownNameTypes[] = { {"CN=", {attributeType 3}, attrtype_len + 1},
  65. {"C=", {attributeType 6}, attrtype_len + 1},
  66. {"L=", {attributeType 7}, attrtype_len + 1},
  67. {"S=", {attributeType 8}, attrtype_len + 1},
  68. {"O=", {attributeType 10}, attrtype_len + 1},
  69. {"OU=", {attributeType 11}, attrtype_len + 1}
  70. };
  71. BYTE Buffer[1024];
  73. BOOL BerVerbose = FALSE ;
  75. char maparray[] = "0123456789abcdef";
  77. #define MAX_OID_VALS 32
  79. typedef struct _OID {
  80. unsigned cVal;
  81. unsigned Val[MAX_OID_VALS];
  82. } OID;
  84. typedef enum _OidResult {
  85. OidExact,
  86. OidPartial,
  87. OidMiss,
  88. OidError
  89. } OidResult;
  92. extern PNTSD_EXTENSION_APIS pExtApis;
  93. extern HANDLE hDbgThread;
  94. extern HANDLE hDbgProcess;
  96. #define DebuggerOut (pExtApis->lpOutputRoutine)
  97. #define GetSymbol (pExtApis->lpGetSymbolRoutine)
  98. #define GetExpr (PVOID) (pExtApis->lpGetExpressionRoutine)
  99. #define InitDebugHelp(hProc,hThd,pApis) {hDbgProcess = hProc; hDbgThread = hThd; pExtApis = pApis;}
  101. #define ExitIfCtrlC() if (pExtApis->lpCheckControlCRoutine()) return;
  102. #define BreakIfCtrlC() if (pExtApis->lpCheckControlCRoutine()) break;
  105. #define LINE_SIZE 192
  106. #define INDENT_SIZE 4
  108. #define OID_VERBOSE 0x0002
  109. #define OID_PARTIAL 0x0001
  111. char * DefaultTree =
  112. "1 iso\n"
  113. " 2 memberbody\n"
  114. " 840 us\n"
  115. " 113549 rsadsi\n"
  116. " 1 pkcs\n"
  117. " 1 RSA\n"
  118. " 3 pkcs-3\n"
  119. " 1 dhKeyAgreement\n"
  120. " 2 digestAlgorithm\n"
  121. " 2 MD2\n"
  122. " 4 MD4\n"
  123. " 5 MD5\n"
  124. " 113554 mit\n"
  125. " 1 infosys\n"
  126. " 2 gssapi\n"
  127. " 1 generic\n"
  128. " 1 user_name\n"
  129. " 2 machine_uid_name\n"
  130. " 3 string_uid_name\n"
  131. " 113556 microsoft\n"
  132. " 1 ds\n"
  133. " 3 org\n"
  134. " 6 dod\n"
  135. " 1 internet\n"
  136. " 4 private\n"
  137. " 1 enterprise\n"
  138. " 311 microsoft\n"
  139. " 1 software\n"
  140. " 1 systems\n"
  141. " 2 wins\n"
  142. " 3 dhcp\n"
  143. " 4 apps\n"
  144. " 5 mos\n"
  145. " 7 InternetServer\n"
  146. " 8 ipx\n"
  147. " 9 ripsap\n"
  148. " 2 security\n"
  149. " 1 certificates\n"
  150. " 2 mechanisms\n"
  151. " 9 Negotiator\n"
  152. " 10 NTLM\n"
  153. " 12 SSL\n"
  154. " 5 security\n"
  155. " 3 integrity\n"
  156. " 1 md5-DES-CBC\n"
  157. " 2 sum64-DES-CBC\n"
  158. " 5 mechanisms\n"
  159. " 1 spkm\n"
  160. " 1 spkm-1\n"
  161. " 2 spkm-2\n"
  162. " 10 spkmGssTokens\n"
  163. " 6 nametypes\n"
  164. " 2 gss-host-based-services\n"
  165. " 3 gss-anonymous-name\n"
  166. " 4 gss-api-exported-name\n"
  167. " 14 oiw\n"
  168. " 3 secsig\n"
  169. " 2 algorithm\n"
  170. " 7 DES-CBC\n"
  171. " 10 DES-MAC\n"
  172. " 18 SHA\n"
  173. " 22 id-rsa-key-transport\n"
  174. "2 joint-iso-ccitt\n"
  175. " 5 ds\n"
  176. " 4 attribute-type\n"
  177. " 3 CommonName\n"
  178. " 6 Country/region\n"
  179. " 7 Locality\n"
  180. " 8 State\n"
  181. " 10 Organization\n"
  182. " 11 OrgUnit\n"
  183. ;
  186. typedef struct _TreeFile {
  187. CHAR * Buffer;
  188. CHAR * Line;
  189. CHAR * CurNul;
  190. } TreeFile, * PTreeFile ;
  193. BOOL
  194. TreeFileInit(
  195. PTreeFile pFile,
  196. PSTR pStr)
  197. {
  198. int l;
  201. l = strlen( pStr );
  203. if ( (pStr[l - 1] != '\r') &&
  204. (pStr[l - 1] != '\n') )
  205. {
  206. l++;
  207. }
  209. pFile->Buffer = LocalAlloc( LMEM_FIXED, l );
  211. if ( pFile->Buffer )
  212. {
  213. strcpy( pFile->Buffer, pStr );
  214. pFile->Line = pFile->Buffer ;
  215. pFile->CurNul = NULL ;
  216. }
  218. return (pFile->Buffer != NULL);
  220. }
  222. VOID
  223. TreeFileDelete(
  224. PTreeFile pFile
  225. )
  226. {
  227. LocalFree( pFile->Buffer );
  229. }
  231. PSTR
  232. TreeFileGetLine(
  233. PTreeFile pFile )
  234. {
  235. PSTR Scan;
  236. PSTR Line;
  238. if ( !pFile->Line )
  239. {
  240. return( NULL );
  241. }
  243. if ( pFile->CurNul )
  244. {
  245. *pFile->CurNul = '\n';
  246. }
  248. pFile->CurNul = NULL ;
  250. Scan = pFile->Line ;
  252. while ( *Scan && (*Scan != '\n') && (*Scan != '\r'))
  253. {
  254. Scan++;
  255. }
  257. //
  258. // Okay, get the line to return
  259. //
  261. Line = pFile->Line;
  263. //
  264. // If this is not the end, touch up the pointers:
  265. //
  267. if ( *Scan )
  268. {
  269. *Scan = '\0';
  271. pFile->CurNul = Scan;
  273. Scan += 1;
  275. while ( *Scan && ( (*Scan == '\r' ) || ( *Scan == '\n') ))
  276. {
  277. Scan++ ;
  278. }
  280. //
  281. // If this is the end, reset line
  282. //
  284. if ( *Scan == '\0' )
  285. {
  286. pFile->Line = NULL ;
  287. }
  288. else
  289. {
  290. pFile->Line = Scan;
  291. }
  293. }
  294. else
  295. {
  296. pFile->Line = NULL ;
  297. }
  299. return( Line );
  301. }
  303. VOID
  304. TreeFileRewind(
  305. PTreeFile pFile )
  306. {
  308. if ( pFile->CurNul )
  309. {
  310. *pFile->CurNul = '\n';
  311. }
  313. pFile->CurNul = NULL ;
  315. pFile->Line = pFile->Buffer ;
  316. }
  318. int
  319. tohex(
  320. BYTE b,
  321. PSTR psz)
  322. {
  323. BYTE b1, b2;
  325. b1 = b >> 4;
  326. b2 = b & 0xF;
  328. *psz++ = maparray[b1];
  329. *psz = maparray[b2];
  331. return(3);
  332. }
  335. //+---------------------------------------------------------------------------
  336. //
  337. // Function: DecodeOID
  338. //
  339. // Synopsis: Decodes an OID into a simple structure
  340. //
  341. // Arguments: [pEncoded] --
  342. // [len] --
  343. // [pOID] --
  344. //
  345. // History: 8-07-96 RichardW Stolen directly from DonH
  346. //
  347. // Notes:
  348. //
  349. //----------------------------------------------------------------------------
  350. BOOL
  351. DecodeOID(unsigned char *pEncoded, int len, OID *pOID)
  352. {
  353. unsigned cval;
  354. unsigned val;
  355. int i, j;
  357. if (len <=2) {
  358. return FALSE;
  359. }
  362. // The first two values are encoded in the first octet.
  364. pOID->Val[0] = pEncoded[0] / 40;
  365. pOID->Val[1] = pEncoded[0] % 40;
  367. //DebuggerOut("Encoded value %02x turned into %d and %d\n", pEncoded[0],
  368. // pOID->Val[0], pOID->Val[1] );
  370. cval = 2;
  371. i = 1;
  373. while (i < len) {
  374. j = 0;
  375. val = pEncoded[i] & 0x7f;
  376. while (pEncoded[i] & 0x80) {
  377. val <<= 7;
  378. ++i;
  379. if (++j > 4 || i >= len) {
  380. // Either this value is bigger than we can handle (we
  381. // don't handle values that span more than four octets)
  382. // -or- the last octet in the encoded string has its
  383. // high bit set, indicating that it's not supposed to
  384. // be the last octet. In either case, we're sunk.
  385. return FALSE;
  386. }
  387. val |= pEncoded[i] & 0x7f;
  388. }
  389. //ASSERT(i < len);
  390. pOID->Val[cval] = val;
  391. ++cval;
  392. ++i;
  393. }
  394. pOID->cVal = cval;
  396. return TRUE;
  397. }
  399. PSTR
  400. GetLineWithIndent(
  401. PTreeFile ptf,
  402. DWORD i)
  403. {
  404. PSTR Scan;
  405. DWORD test;
  408. do
  409. {
  410. Scan = TreeFileGetLine( ptf );
  413. if ( Scan && i )
  414. {
  415. if ( i < INDENT_SIZE )
  416. {
  417. test = 0;
  418. }
  419. else
  420. {
  421. test = i - INDENT_SIZE ;
  422. }
  424. if ( Scan[ test ] != ' ' )
  425. {
  426. {
  427. Scan = NULL ;
  428. break;
  429. }
  430. }
  432. }
  433. else
  434. test = 0;
  436. } while ( Scan && (Scan[i] == ' ') );
  438. return( Scan );
  439. }
  441. OidResult
  442. scan_oid_table(
  443. char * Table,
  444. DWORD Flags,
  445. PUCHAR ObjectId,
  446. DWORD Len,
  447. PSTR pszRep,
  448. DWORD MaxRep)
  449. {
  450. CHAR OidPath[ MAX_PATH ];
  451. OID Oid;
  452. DWORD i;
  453. DWORD Indent;
  454. TreeFile tf;
  455. PSTR Scan;
  456. PSTR Tag;
  457. PSTR SubScan;
  458. DWORD Index;
  459. DWORD size;
  460. DWORD TagSize;
  462. if (!DecodeOID( ObjectId, Len, &Oid ))
  463. {
  464. return( OidError );
  465. }
  468. i = 0;
  470. Indent = 0;
  472. if ( !TreeFileInit( &tf, Table ) )
  473. {
  474. DebuggerOut("Unable to load prefix table\n");
  475. return OidError ;
  476. }
  478. Tag = OidPath;
  480. size = 0;
  482. TagSize = 0;
  485. if ( (Flags & OID_VERBOSE) == 0 )
  486. {
  487. while ( i < Oid.cVal )
  488. {
  489. TagSize = _snprintf( Tag, MAX_PATH - size, "%d.",
  490. Oid.Val[i] );
  492. size += TagSize;
  494. Tag += TagSize;
  496. i++;
  498. }
  500. strncpy( pszRep, OidPath, MaxRep );
  502. TreeFileDelete( &tf );
  504. return( OidExact );
  505. }
  507. while ( i < Oid.cVal )
  508. {
  510. do
  511. {
  513. Scan = GetLineWithIndent( &tf, Indent );
  516. if ( Scan )
  517. {
  518. Index = atoi(Scan);
  519. }
  520. else
  521. {
  522. Index = (DWORD) -1;
  523. }
  525. if ( Index == Oid.Val[i] )
  526. {
  527. break;
  528. }
  530. } while ( Scan );
  533. //
  534. // If Scan is NULL, we didn't get a match
  535. //
  537. if ( !Scan )
  538. {
  539. if ( i > 0 )
  540. {
  541. if ( Flags & OID_PARTIAL )
  542. {
  543. while ( i < Oid.cVal )
  544. {
  545. TagSize = _snprintf( Tag, MAX_PATH - size, "%d ",
  546. Oid.Val[i] );
  548. size += TagSize;
  550. Tag += TagSize;
  552. i++;
  554. }
  555. strncpy( pszRep, OidPath, MaxRep );
  556. }
  558. TreeFileDelete( &tf );
  560. return( OidPartial );
  562. }
  564. TreeFileDelete( &tf );
  566. return( OidMiss );
  567. }
  569. //
  570. // Got a hit:
  571. //
  573. SubScan = &Scan[Indent];
  575. while (*SubScan != ' ')
  576. {
  577. SubScan++;
  578. }
  580. SubScan++;
  582. TagSize = _snprintf( Tag, MAX_PATH - size, "%s(%d) ", SubScan, Index );
  584. size += TagSize;
  586. Tag += TagSize ;
  588. Indent += INDENT_SIZE ;
  590. i ++;
  593. }
  595. strncpy( pszRep, OidPath, MaxRep );
  597. TreeFileDelete( &tf );
  599. return( OidExact );
  602. }
  604. decode_to_string(
  605. LPBYTE pBuffer,
  606. DWORD Flags,
  607. DWORD Type,
  608. DWORD Len,
  609. PSTR pszRep,
  610. DWORD RepLen)
  611. {
  612. PSTR pstr;
  613. PSTR lineptr;
  614. DWORD i;
  617. switch (Type)
  618. {
  619. case BER_NULL:
  620. strcpy(pszRep, "<empty>");
  621. break;
  623. case BER_OBJECT_ID:
  624. scan_oid_table( DefaultTree,
  625. OID_PARTIAL | (Flags & DECODE_VERBOSE_OIDS ? OID_VERBOSE : 0 ),
  626. pBuffer, Len, pszRep, RepLen );
  628. break;
  630. case BER_PRINTABLE_STRING:
  631. case BER_TELETEX_STRING:
  632. case BER_GRAPHIC_STRING:
  633. case BER_VISIBLE_STRING:
  634. case BER_GENERAL_STRING:
  635. CopyMemory(pszRep, pBuffer, min(Len, RepLen - 1) );
  636. pszRep[min(Len, RepLen - 1)] = '\0';
  637. break;
  639. default:
  641. pstr = &pszRep[30];
  642. lineptr = pszRep;
  643. for (i = 0; i < min(Len, 8) ; i++ )
  644. {
  645. lineptr += tohex(*pBuffer, lineptr);
  646. if ((*pBuffer >= ' ') && (*pBuffer <= '|'))
  647. {
  648. *pstr++ = *pBuffer;
  649. }
  650. else
  651. {
  652. *pstr++ = '.';
  653. }
  655. pBuffer++;
  657. }
  658. *pstr++ = '\0';
  659. }
  660. return(0);
  661. }
  663. int
  664. ber_decode(
  665. OutputFn Out,
  666. StopFn Stop,
  667. LPBYTE pBuffer,
  668. DWORD Flags,
  669. int Indent,
  670. int Offset,
  671. int TotalLength,
  672. int BarDepth)
  673. {
  674. char * TypeName = NULL;
  675. char msg[32];
  676. char * pstr;
  677. int i;
  678. int Len;
  679. int ByteCount;
  680. int Accumulated;
  681. DWORD Type;
  682. int subsize;
  683. char line[ LINE_SIZE ];
  684. BOOL Nested;
  685. BOOL Leaf;
  686. int NewBarDepth;
  687. char nonuniversal[ LINE_SIZE ];
  691. if ((Stop)())
  692. {
  693. return(0);
  694. }
  696. Type = *pBuffer;
  699. if ( (Type & 0xC0) == 0 )
  700. {
  701. switch ( Type & 0x1F )
  702. {
  703. case BER_BOOL:
  704. TypeName = "Bool";
  705. break;
  707. case BER_INTEGER:
  708. TypeName = "Integer";
  709. break;
  711. case BER_BIT_STRING:
  712. TypeName = "Bit String";
  713. break;
  715. case BER_OCTET_STRING:
  716. TypeName = "Octet String";
  717. if ( Flags & DECODE_NEST_OCTET_STRINGS )
  718. {
  719. TypeName = "Octet String (Expanding)";
  720. Type |= BER_CONSTRUCTED ;
  721. Flags &= ~( DECODE_NEST_OCTET_STRINGS );
  722. }
  723. break;
  725. case BER_NULL:
  726. TypeName = "Null";
  727. break;
  729. case BER_OBJECT_ID:
  730. TypeName = "Object ID";
  731. break;
  733. case BER_OBJECT_DESC:
  734. TypeName = "Object Descriptor";
  735. break;
  737. case BER_SEQUENCE:
  738. TypeName = "Sequence";
  739. break;
  741. case BER_SET:
  742. TypeName = "Set";
  743. break;
  745. case BER_NUMERIC_STRING:
  746. TypeName = "Numeric String";
  747. break;
  749. case BER_PRINTABLE_STRING:
  750. TypeName = "Printable String";
  751. break;
  753. case BER_TELETEX_STRING:
  754. TypeName = "TeleTex String";
  755. break;
  757. case BER_VIDEOTEX_STRING:
  758. TypeName = "VideoTex String";
  759. break;
  761. case BER_VISIBLE_STRING:
  762. TypeName = "Visible String";
  763. break;
  765. case BER_GENERAL_STRING:
  766. TypeName = "General String";
  767. break;
  769. case BER_GRAPHIC_STRING:
  770. TypeName = "Graphic String";
  771. break;
  773. case BER_UTC_TIME:
  774. TypeName = "UTC Time";
  775. break;
  778. default:
  779. TypeName = "Unknown";
  780. break;
  781. }
  782. }
  783. else
  784. {
  785. //
  786. // Not universal
  787. //
  789. switch ( Type & 0xC0 )
  790. {
  791. case BER_UNIVERSAL:
  792. TypeName = "Internal Error!";
  793. break;
  795. case BER_APPLICATION:
  796. sprintf( nonuniversal, "[Application %d]", Type & 0x1F);
  797. TypeName = nonuniversal;
  798. break;
  800. case BER_CONTEXT_SPECIFIC:
  801. sprintf( nonuniversal, "[Context Specific %d]", Type & 0x1F);
  802. TypeName = nonuniversal;
  803. break;
  805. case BER_PRIVATE:
  806. sprintf( nonuniversal, "[Private %d]", Type & 0x1F);
  807. TypeName = nonuniversal ;
  808. break;
  810. }
  811. }
  814. pstr = msg;
  815. for (i = 0; i < Indent ; i++ )
  816. {
  817. if (i < BarDepth)
  818. {
  819. *pstr++ = '\263';
  820. }
  821. else
  822. {
  823. *pstr++ = ' ';
  824. }
  825. *pstr++ = ' ';
  826. }
  827. *pstr++ = '\0';
  829. pBuffer ++;
  830. Len = 0;
  832. if (*pBuffer & 0x80)
  833. {
  834. ByteCount = *pBuffer++ & 0x7f;
  836. for (i = 0; i < ByteCount ; i++ )
  837. {
  838. Len <<= 8;
  839. Len += *pBuffer++;
  840. }
  841. }
  842. else
  843. {
  844. ByteCount = 0;
  845. Len = *pBuffer++;
  846. }
  848. if (Offset + Len + 2 + ByteCount == TotalLength)
  849. {
  850. Leaf = TRUE;
  851. }
  852. else
  853. {
  854. Leaf = FALSE;
  855. }
  856. if (Type & BER_CONSTRUCTED)
  857. {
  858. Nested = TRUE;
  859. }
  860. else
  861. {
  862. Nested = FALSE;
  863. }
  865. (Out)("%s%c\304%c[%x] %s(%d) ", msg,
  866. Leaf ? 192 : 195,
  867. Nested ? 194 : 196,
  868. Type, TypeName, Len);
  870. if ( Type & BER_CONSTRUCTED )
  871. {
  872. (Out)("\n");
  873. Accumulated = 0;
  874. while (Accumulated < Len)
  875. {
  876. if (BarDepth < Indent)
  877. {
  878. NewBarDepth = BarDepth;
  879. }
  880. else
  881. {
  882. NewBarDepth = (Nested && Leaf) ? BarDepth : Indent + 1;
  883. }
  885. subsize = ber_decode(Out, Stop, pBuffer, Flags, Indent + 1,
  886. Accumulated, Len, NewBarDepth);
  887. Accumulated += subsize;
  888. pBuffer += subsize;
  889. }
  890. (Out)("%s%c\n", msg, ((Indent <= BarDepth) && !Leaf) ? 179 : 32);
  891. }
  892. else
  893. {
  894. memset(line, ' ', LINE_SIZE - 1);
  895. line[ LINE_SIZE - 1 ] = '\0';
  897. decode_to_string(pBuffer, Flags, Type, Len, line, LINE_SIZE);
  899. (Out)("%s\n", line);
  901. }
  903. return(Len + 2 + ByteCount);
  904. }
  906. BOOL
  907. NeverStop(void)
  908. {
  909. return(FALSE);
  910. }