archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
4 Commits
1 Branch
0 Tags
1.5 GiB
Tree: 5c6fe3db62
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '5c6fe3db62'
${ noResults }
windows-server-2003/ds/security/protocols/msv_sspi/test/msvsharelevel/main.cxx

551 lines
15 KiB
Raw Normal View History

commiting as it is
4 years ago
  1. /*++
  3. Copyright (c) 2001 Microsoft Corporation
  5. Module Name:
  7. main.cxx
  9. Abstract:
  11. main
  13. Author:
  15. Larry Zhu (LZhu) January 1, 2002 Created
  17. Environment:
  19. User Mode
  21. Revision History:
  23. --*/
  25. #include "precomp.hxx"
  26. #pragma hdrstop
  28. #include "main.hxx"
  29. #include "msvsharelevelcli.hxx"
  30. #include "msvsharelevelsrv.hxx"
  32. #include <sockcomm.h>
  33. #include <transport.hxx>
  35. VOID
  36. Usage(
  37. IN PCTSTR pszApp
  38. )
  39. {
  40. SspiPrint(SSPI_ERROR,
  41. TEXT("\n\nUsage: %s [-srvcomputerdomainname srvcomputerdomainname>] ")
  42. TEXT("[-supplieduser <user>] [-supplieddomain <domain>] [-suppliedpassword <password>] ")
  43. TEXT("[-serverhostname <serverhostname>] [-portnum <portnum>] [-nocheckclictxt] [-nochecksrvctxt] \n\n"), pszApp);
  44. exit(-1);
  45. }
  47. VOID
  48. checkpoint(
  49. VOID
  50. )
  51. {
  52. SspiPrint(SSPI_LOG, TEXT("checkpoint\n"));
  53. ASSERT(FALSE);
  54. }
  56. struct TClientParameter {
  57. AUTHENTICATE_MESSAGE* pAuthMessage;
  58. ULONG cbAuthMessage;
  59. NTLM_AUTHENTICATE_MESSAGE* pNtlmAuthMessage;
  60. PCSTR pszServer;
  61. USHORT ServerSocketPort;
  62. };
  64. DWORD WINAPI
  65. ClientThread(
  66. IN PVOID pParameter // thread data
  67. )
  68. {
  69. THResult hRetval = S_OK;
  71. TClientParameter *pCliParam = (TClientParameter* ) pParameter;
  72. SOCKET ClientSocket = INVALID_SOCKET;
  73. ULONG MessageNum = 0;
  75. SspiPrint(SSPI_LOG, TEXT("ClientThread entering %#x\n"), g_MessageNumTlsIndex);
  77. hRetval DBGCHK = TlsSetValue(g_MessageNumTlsIndex, &MessageNum) ? S_OK : GetLastErrorAsHResult();
  79. if (SUCCEEDED(hRetval))
  80. {
  81. hRetval DBGCHK = ClientConnect(
  82. pCliParam->pszServer,
  83. pCliParam->ServerSocketPort,
  84. &ClientSocket
  85. );
  86. }
  88. if (SUCCEEDED(hRetval))
  89. {
  90. hRetval DBGCHK = WriteMessage(
  91. ClientSocket,
  92. pCliParam->cbAuthMessage,
  93. pCliParam->pAuthMessage
  94. );
  95. }
  97. if (SUCCEEDED(hRetval))
  98. {
  99. hRetval DBGCHK = WriteMessage(
  100. ClientSocket,
  101. sizeof(NTLM_AUTHENTICATE_MESSAGE),
  102. pCliParam->pNtlmAuthMessage
  103. );
  104. }
  106. if (INVALID_SOCKET != ClientSocket)
  107. {
  108. closesocket(ClientSocket);
  109. }
  111. SspiPrint(SSPI_LOG, TEXT("ClientThread leaving\n"));
  113. return hRetval;
  114. }
  116. VOID __cdecl
  117. _tmain(
  118. IN INT argc,
  119. IN PTSTR argv[]
  120. )
  121. {
  122. TNtStatus Status = STATUS_SUCCESS;
  124. ULONG mark = 1;
  125. CtxtHandle hCliCtxt;
  126. CtxtHandle hSrvCtxt;
  127. HANDLE hToken = NULL;
  128. SOCKET SocketListen = INVALID_SOCKET;
  129. SOCKET ServerSocket = INVALID_SOCKET;
  130. HANDLE hClientThread = NULL;
  132. SEC_WINNT_AUTH_IDENTITY SrvAuthData = {0};
  133. SEC_WINNT_AUTH_IDENTITY* pSrvAuth = NULL;
  134. SEC_WINNT_AUTH_IDENTITY_EXW* pCliAuth = NULL;
  135. UNICODE_STRING TargetInfo = {0};
  136. UNICODE_STRING TargetName = {0};
  137. AUTHENTICATE_MESSAGE* pAuthMessage = NULL;
  138. ULONG cbAuthMessage = 0;
  139. TClientParameter CliParam = {0};
  140. ULONG ClientThreadId = 0;
  141. ULONG MessageNum = 0;
  143. NTLM_AUTHENTICATE_MESSAGE NtlmAuthMessage = {0};
  145. UNICODE_STRING SrvDnsDomainName = {0};
  146. UNICODE_STRING SrvDnsComputerName = {0};
  147. UNICODE_STRING SrvDnsTreeName = {0};
  148. UNICODE_STRING SrvComputerName = {0};
  149. UNICODE_STRING SrvComputerDomainName = {0};
  151. PCTSTR pszClientName = NULL;
  152. PCTSTR pszClientDomain = NULL;
  153. PCTSTR pszClientPassword = NULL;
  154. PCTSTR pszServerName = NULL;
  155. PCTSTR pszServerDomain = NULL;
  156. PCTSTR pszServerPassword = NULL;
  158. PTSTR pszSrvCredPrincipal = NULL;
  159. PTSTR pszCliCredPrincipal = NULL;
  161. UNICODE_STRING UserName = {0};
  162. UNICODE_STRING Password = {0};
  163. UNICODE_STRING DomainName = {0};
  165. OEM_STRING CliOemDomainName = {0};
  166. OEM_STRING CliOemWorkstationName = {0};
  168. ULONG CliNegotiateFlags =
  169. NTLMSSP_NEGOTIATE_UNICODE
  170. | NTLMSSP_NEGOTIATE_OEM
  171. | NTLMSSP_REQUEST_TARGET
  172. | NTLMSSP_NEGOTIATE_NTLM
  173. | NTLMSSP_NEGOTIATE_ALWAYS_SIGN
  174. | NTLMSSP_NEGOTIATE_NTLM2
  175. | NTLMSSP_NEGOTIATE_IDENTIFY
  176. | NTLMSSP_NEGOTIATE_128;
  178. ULONG CliTargetFlags = NTLMSSP_TARGET_TYPE_SERVER; // NTLMSSP_TARGET_TYPE_DOMAIN
  179. BOOLEAN bCliForceGuest = FALSE;
  180. ULONG CliContextAttr = ISC_REQ_MUTUAL_AUTH | ISC_REQ_REPLAY_DETECT | ISC_REQ_CONFIDENTIALITY;
  181. ULONG SrvContextAttr = ASC_REQ_EXTENDED_ERROR;
  183. LUID* pCliCredLogonID = NULL;
  184. LUID CliCredLogonId = {0};
  185. LUID* pSrvCredLogonID = NULL;
  186. LUID SrvCredLogonId = {0};
  188. ULONG CliTargetDataRep = SECURITY_NATIVE_DREP;
  189. ULONG SrvTargetDataRep = SECURITY_NATIVE_DREP;
  190. BOOLEAN bCheckClientCtxt = TRUE;
  191. BOOLEAN bCheckServerCtxt = TRUE;
  192. BOOLEAN bServerCheckUserData = FALSE;
  193. BOOLEAN bServerCheckUserToken = FALSE;
  195. BOOLEAN bStartServer = TRUE;
  196. BOOLEAN bStartClient = TRUE;
  197. USHORT PortNum = 6217;
  198. PSTR pszServerHostName = NULL;
  199. UNICODE_STRING ServerHostName = {0};
  200. ANSI_STRING ServerAnsiName = {0};
  201. TPrivilege* pPriv = NULL;
  203. SspiLogOpen(TEXT("msv.exe"), SSPI_LOG | SSPI_WARN | SSPI_ERROR | SSPI_MSG);
  204. DebugLogOpen("msv", SSPI_LOG | SSPI_WARN | SSPI_ERROR | SSPI_MSG);
  206. SecInvalidateHandle(&hCliCtxt);
  207. SecInvalidateHandle(&hSrvCtxt);
  209. (VOID) RtlGenRandom(NtlmAuthMessage.ChallengeToClient, MSV1_0_CHALLENGE_LENGTH);
  211. argc--;
  213. while (argc)
  214. {
  215. if (!lstrcmp(argv[mark], TEXT("-srvcomputerdomainname")) && argc > 1)
  216. {
  217. argc--; mark++;
  218. RtlInitUnicodeString(&SrvComputerDomainName, argv[mark]);
  219. argc--; mark++;
  220. }
  221. else if (!lstrcmp(argv[mark], TEXT("-supplieduser")) && argc > 1)
  222. {
  223. argc--; mark++;
  224. RtlInitUnicodeString(&UserName, argv[mark]);
  225. pszClientName = UserName.Buffer;
  226. argc--; mark++;
  227. }
  228. else if (!lstrcmp(argv[mark], TEXT("-supplieddomain")) && argc > 1)
  229. {
  230. argc--; mark++;
  231. RtlInitUnicodeString(&DomainName, argv[mark]);
  232. pszClientDomain = DomainName.Buffer;
  233. argc--; mark++;
  234. }
  235. else if (!lstrcmp(argv[mark], TEXT("-suppliedpassword")) && argc > 1)
  236. {
  237. argc--; mark++;
  238. RtlInitUnicodeString(&Password, argv[mark]);
  239. pszClientPassword = Password.Buffer;
  240. argc--; mark++;
  241. }
  242. else if (!lstrcmp(argv[mark], TEXT("-serverhostname")) && argc > 1)
  243. {
  244. argc--; mark++;
  245. RtlInitUnicodeString(&ServerHostName, argv[mark]);
  246. Status DBGCHK = RtlUnicodeStringToAnsiString(&ServerAnsiName, &ServerHostName, TRUE);
  247. bStartServer = FALSE;
  248. argc--; mark++;
  249. }
  250. else if (!lstrcmp(argv[mark], TEXT("-portnum")) && argc > 1)
  251. {
  252. argc--; mark++;
  253. PortNum = (USHORT) lstrtol(argv[mark], NULL, 0);
  254. argc--; mark++;
  255. }
  256. else if (!lstrcmp(argv[mark], TEXT("-noserver")))
  257. {
  258. argc--; mark++;
  259. bStartServer = FALSE;
  260. }
  261. else if (!lstrcmp(argv[mark], TEXT("-noclient")))
  262. {
  263. argc--; mark++;
  264. bStartClient = FALSE;
  265. }
  266. else if (!lstrcmp(argv[mark], TEXT("-nocheckclictxt")))
  267. {
  268. argc--; mark++;
  269. bCheckClientCtxt = FALSE;
  270. }
  271. else if (!lstrcmp(argv[mark], TEXT("-nochecksrvctxt")))
  272. {
  273. argc--; mark++;
  274. bCheckServerCtxt = FALSE;
  275. }
  276. else if (!lstrcmp(argv[mark], TEXT("-h")))
  277. {
  278. argc--; mark++;
  279. Usage(argv[0]);
  280. }
  281. else
  282. {
  283. Usage(argv[0]);
  284. }
  285. }
  287. SOCKET Socket = INVALID_SOCKET;
  288. Status DBGCHK = InitWinsock() ? S_OK : GetLastErrorAsHResult();
  290. if (NT_SUCCESS(Status) && (TLS_OUT_OF_INDEXES == g_MessageNumTlsIndex))
  291. {
  292. g_MessageNumTlsIndex = TlsAlloc();
  293. Status DBGCHK = (TLS_OUT_OF_INDEXES != g_MessageNumTlsIndex) ? S_OK : GetLastErrorAsHResult();
  294. }
  296. if (NT_SUCCESS(Status) && bStartServer)
  297. {
  298. Status DBGCHK = ServerInit(PortNum, "msvsharelevel server", &SocketListen);
  299. if (NT_SUCCESS(Status))
  300. {
  301. Status DBGCHK = TlsSetValue(g_MessageNumTlsIndex, &MessageNum) ? S_OK : GetLastErrorAsHResult();
  302. }
  304. //
  305. // server must hold TCB
  306. //
  308. if (NT_SUCCESS(Status))
  309. {
  310. pPriv = new TPrivilege(SE_TCB_PRIVILEGE, TRUE);
  311. Status DBGCHK = pPriv ? pPriv->Validate() : E_OUTOFMEMORY;
  312. }
  313. }
  315. if (NT_SUCCESS(Status) && bStartClient)
  316. {
  317. if (pszClientName || pszClientDomain || pszClientPassword)
  318. {
  319. Status DBGCHK = GetAuthdataExWMarshalled(
  320. pszClientName,
  321. pszClientDomain,
  322. pszClientPassword,
  323. L"ntlm",
  324. &pCliAuth
  325. );
  326. }
  328. if (NT_SUCCESS(Status))
  329. {
  330. Status DBGCHK = MsvChallenge(
  331. pszCliCredPrincipal,
  332. pCliCredLogonID,
  333. pCliAuth,
  334. &CliOemDomainName,
  335. &CliOemWorkstationName,
  336. CliNegotiateFlags,
  337. CliTargetFlags,
  338. bCliForceGuest,
  339. CliContextAttr,
  340. CliTargetDataRep,
  341. &Password,
  342. &UserName,
  343. &DomainName,
  344. (UCHAR*) NtlmAuthMessage.ChallengeToClient,
  345. &SrvDnsDomainName,
  346. &SrvDnsComputerName,
  347. &SrvDnsTreeName,
  348. &SrvComputerName,
  349. &SrvComputerDomainName,
  350. &cbAuthMessage,
  351. &pAuthMessage,
  352. &hCliCtxt,
  353. &CliContextAttr
  354. );
  355. }
  357. if (NT_SUCCESS(Status) && bCheckClientCtxt)
  358. {
  359. SspiPrint(SSPI_LOG, TEXT("***************Checking client ctxt handle*************\n"));
  360. Status DBGCHK = CheckSecurityContextHandle(&hCliCtxt);
  361. }
  363. if (NT_SUCCESS(Status))
  364. {
  365. CliParam.cbAuthMessage = cbAuthMessage;
  366. CliParam.pAuthMessage = pAuthMessage;
  367. CliParam.pNtlmAuthMessage = &NtlmAuthMessage;
  368. CliParam.pszServer = ServerAnsiName.Buffer;
  369. CliParam.ServerSocketPort = PortNum;
  371. hClientThread = CreateThread(
  372. NULL, // no SD
  373. 0, // user default stack size
  374. ClientThread,
  375. &CliParam, // thread parameter
  376. 0, // no creation flags
  377. &ClientThreadId
  378. );
  379. Status DBGCHK = hClientThread ? S_OK : GetLastErrorAsHResult();
  380. }
  381. }
  383. //
  384. // server must hold TCB for sharelevels
  385. //
  387. if (NT_SUCCESS(Status) && bStartServer)
  388. {
  389. BOOLEAN WasEnabled = FALSE;
  390. ULONG cbAuthMsg = 0;
  391. CHAR AuthMsg[NTLMSSP_MAX_MESSAGE_SIZE] = {0};
  392. NTLM_AUTHENTICATE_MESSAGE NtLmAuthMsg = {0};
  393. AUTHENTICATE_MESSAGE* pAuthMsg = (AUTHENTICATE_MESSAGE*) AuthMsg;
  395. ServerSocket = accept(SocketListen, NULL, NULL);
  396. Status DBGCHK = INVALID_SOCKET != ServerSocket ? S_OK : GetLastErrorAsHResult();
  398. if (NT_SUCCESS(Status))
  399. {
  400. Status DBGCHK = ReadMessage(
  401. ServerSocket,
  402. NTLMSSP_MAX_MESSAGE_SIZE,
  403. AuthMsg,
  404. &cbAuthMsg
  405. );
  406. }
  408. if (NT_SUCCESS(Status))
  409. {
  410. ULONG cbRead = 0;
  412. Status DBGCHK = ReadMessage(
  413. ServerSocket,
  414. sizeof(NtLmAuthMsg),
  415. &NtLmAuthMsg,
  416. &cbRead
  417. );
  418. }
  420. if (NT_SUCCESS(Status) && (pszServerName || pszServerDomain || pszServerPassword))
  421. {
  422. pSrvAuth = &SrvAuthData;
  423. GetAuthdata(
  424. pszServerName,
  425. pszServerDomain,
  426. pszServerPassword,
  427. &SrvAuthData
  428. );
  429. }
  431. if (NT_SUCCESS(Status))
  432. {
  433. Status DBGCHK = MsvAuthenticate(
  434. pszSrvCredPrincipal,
  435. pSrvCredLogonID,
  436. pSrvAuth,
  437. SrvContextAttr,
  438. SrvTargetDataRep,
  439. cbAuthMsg,
  440. pAuthMsg,
  441. &NtLmAuthMsg,
  442. &hSrvCtxt,
  443. &SrvContextAttr
  444. );
  445. }
  447. if (NT_SUCCESS(Status) && bCheckServerCtxt)
  448. {
  449. SspiPrint(SSPI_LOG, TEXT("***************Checking server ctxt handle*************\n"));
  450. Status DBGCHK = CheckSecurityContextHandle(&hSrvCtxt);
  451. }
  453. if (NT_SUCCESS(Status))
  454. {
  455. Status DBGCHK = ImpersonateSecurityContext(&hSrvCtxt);
  456. }
  458. if (NT_SUCCESS(Status) && bServerCheckUserData)
  459. {
  460. SspiPrint(SSPI_LOG, TEXT("**************Server checking user data via ImpersonateSecurityContext ******\n"));
  461. Status DBGCHK = CheckUserData();
  462. }
  464. if (NT_SUCCESS(Status))
  465. {
  466. Status DBGCHK = RevertSecurityContext(&hSrvCtxt);
  467. }
  469. if (NT_SUCCESS(Status) && bServerCheckUserToken)
  470. {
  471. Status DBGCHK = QuerySecurityContextToken(&hSrvCtxt, &hToken);
  472. }
  474. if (NT_SUCCESS(Status) && bServerCheckUserToken)
  475. {
  476. SspiPrint(SSPI_LOG, TEXT("**************Server checking user data via QuerySecurityContextToken ******\n"));
  477. Status DBGCHK = CheckUserToken(hToken);
  478. }
  479. }
  481. if (NT_SUCCESS(Status) && hClientThread)
  482. {
  483. Status DBGCHK = HResultFromWin32(WaitForSingleObject(hClientThread, INFINITE));
  484. }
  486. if (pPriv)
  487. {
  488. delete pPriv;
  489. }
  491. if (pCliAuth)
  492. {
  493. delete [] pCliAuth;
  494. }
  496. if (NT_SUCCESS(Status))
  497. {
  498. SspiPrint(SSPI_LOG, TEXT("Operation succeeded\n"));
  499. }
  500. else
  501. {
  502. SspiPrint(SSPI_ERROR, TEXT("Operation failed\n"));
  503. }
  505. TermWinsock();
  507. if (pAuthMessage)
  508. {
  509. FreeContextBuffer(pAuthMessage);
  510. }
  512. if (SecIsValidHandle(&hCliCtxt))
  513. {
  514. DeleteSecurityContext(&hCliCtxt);
  515. }
  517. if (SecIsValidHandle(&hSrvCtxt))
  518. {
  519. DeleteSecurityContext(&hSrvCtxt);
  520. }
  522. if (hToken)
  523. {
  524. CloseHandle(hToken);
  525. }
  527. if (TLS_OUT_OF_INDEXES != g_MessageNumTlsIndex)
  528. {
  529. TlsFree(g_MessageNumTlsIndex);
  530. g_MessageNumTlsIndex = TLS_OUT_OF_INDEXES;
  531. }
  533. if (hClientThread)
  534. {
  535. CloseHandle(hClientThread);
  536. }
  538. if (INVALID_SOCKET != SocketListen)
  539. {
  540. closesocket(SocketListen);
  541. }
  543. if (INVALID_SOCKET != ServerSocket)
  544. {
  545. closesocket(ServerSocket);
  546. }
  548. DebugLogClose();
  549. SspiLogClose();
  550. }