archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
2 Commits
1 Branch
0 Tags
1.5 GiB
Tree: 7b07a90fc1
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '7b07a90fc1'
${ noResults }
windows-server-2003/base/wmi/tests/rcvevent/rcvevent.c

587 lines
16 KiB
Raw Normal View History

commiting as it is
4 years ago
  1. #include <nt.h>
  2. #include <ntrtl.h>
  3. #include <nturtl.h>
  4. #include <windows.h>
  5. #include <ole2.h>
  6. #include <stdio.h>
  7. #include <stdlib.h>
  9. #include "wmium.h"
  11. #define OffsetToPtr(Base, Offset) ((PBYTE)((PBYTE)Base + Offset))
  12. //
  13. // The routines below were blantenly stolen without remorse from the ole
  14. // sources in \nt\private\ole32\com\class\compapi.cxx. They are copied here
  15. // so that WMI doesn't need to load in ole32 only to convert a guid string
  16. // into its binary representation.
  17. //
  20. //+-------------------------------------------------------------------------
  21. //
  22. // Function: HexStringToDword (private)
  23. //
  24. // Synopsis: scan lpsz for a number of hex digits (at most 8); update lpsz
  25. // return value in Value; check for chDelim;
  26. //
  27. // Arguments: [lpsz] - the hex string to convert
  28. // [Value] - the returned value
  29. // [cDigits] - count of digits
  30. //
  31. // Returns: TRUE for success
  32. //
  33. //--------------------------------------------------------------------------
  34. BOOL HexStringToDword(LPCSTR lpsz, DWORD * RetValue,
  35. int cDigits, WCHAR chDelim)
  36. {
  37. int Count;
  38. DWORD Value;
  40. Value = 0;
  41. for (Count = 0; Count < cDigits; Count++, lpsz++)
  42. {
  43. if (*lpsz >= '0' && *lpsz <= '9')
  44. Value = (Value << 4) + *lpsz - '0';
  45. else if (*lpsz >= 'A' && *lpsz <= 'F')
  46. Value = (Value << 4) + *lpsz - 'A' + 10;
  47. else if (*lpsz >= 'a' && *lpsz <= 'f')
  48. Value = (Value << 4) + *lpsz - 'a' + 10;
  49. else
  50. return(FALSE);
  51. }
  53. *RetValue = Value;
  55. if (chDelim != 0)
  56. return *lpsz++ == chDelim;
  57. else
  58. return TRUE;
  59. }
  60. //+-------------------------------------------------------------------------
  61. //
  62. // Function: wUUIDFromString (internal)
  63. //
  64. // Synopsis: Parse UUID such as 00000000-0000-0000-0000-000000000000
  65. //
  66. // Arguments: [lpsz] - Supplies the UUID string to convert
  67. // [pguid] - Returns the GUID.
  68. //
  69. // Returns: TRUE if successful
  70. //
  71. //--------------------------------------------------------------------------
  72. BOOL wUUIDFromString(LPCSTR lpsz, LPGUID pguid)
  73. {
  74. DWORD dw;
  76. if (!HexStringToDword(lpsz, &pguid->Data1, sizeof(DWORD)*2, '-'))
  77. return FALSE;
  78. lpsz += sizeof(DWORD)*2 + 1;
  80. if (!HexStringToDword(lpsz, &dw, sizeof(WORD)*2, '-'))
  81. return FALSE;
  82. lpsz += sizeof(WORD)*2 + 1;
  84. pguid->Data2 = (WORD)dw;
  86. if (!HexStringToDword(lpsz, &dw, sizeof(WORD)*2, '-'))
  87. return FALSE;
  88. lpsz += sizeof(WORD)*2 + 1;
  90. pguid->Data3 = (WORD)dw;
  92. if (!HexStringToDword(lpsz, &dw, sizeof(BYTE)*2, 0))
  93. return FALSE;
  94. lpsz += sizeof(BYTE)*2;
  96. pguid->Data4[0] = (BYTE)dw;
  97. if (!HexStringToDword(lpsz, &dw, sizeof(BYTE)*2, '-'))
  98. return FALSE;
  99. lpsz += sizeof(BYTE)*2+1;
  101. pguid->Data4[1] = (BYTE)dw;
  103. if (!HexStringToDword(lpsz, &dw, sizeof(BYTE)*2, 0))
  104. return FALSE;
  105. lpsz += sizeof(BYTE)*2;
  107. pguid->Data4[2] = (BYTE)dw;
  109. if (!HexStringToDword(lpsz, &dw, sizeof(BYTE)*2, 0))
  110. return FALSE;
  111. lpsz += sizeof(BYTE)*2;
  113. pguid->Data4[3] = (BYTE)dw;
  115. if (!HexStringToDword(lpsz, &dw, sizeof(BYTE)*2, 0))
  116. return FALSE;
  117. lpsz += sizeof(BYTE)*2;
  119. pguid->Data4[4] = (BYTE)dw;
  121. if (!HexStringToDword(lpsz, &dw, sizeof(BYTE)*2, 0))
  122. return FALSE;
  123. lpsz += sizeof(BYTE)*2;
  125. pguid->Data4[5] = (BYTE)dw;
  127. if (!HexStringToDword(lpsz, &dw, sizeof(BYTE)*2, 0))
  128. return FALSE;
  129. lpsz += sizeof(BYTE)*2;
  131. pguid->Data4[6] = (BYTE)dw;
  132. if (!HexStringToDword(lpsz, &dw, sizeof(BYTE)*2, 0))
  133. return FALSE;
  134. lpsz += sizeof(BYTE)*2;
  136. pguid->Data4[7] = (BYTE)dw;
  138. return TRUE;
  139. }
  141. //+-------------------------------------------------------------------------
  142. //
  143. // Function: wGUIDFromString (internal)
  144. //
  145. // Synopsis: Parse GUID such as {00000000-0000-0000-0000-000000000000}
  146. //
  147. // Arguments: [lpsz] - the guid string to convert
  148. // [pguid] - guid to return
  149. //
  150. // Returns: TRUE if successful
  151. //
  152. //--------------------------------------------------------------------------
  153. BOOL wGUIDFromString(LPCSTR lpsz, LPGUID pguid)
  154. {
  155. DWORD dw;
  157. if (*lpsz == '{' )
  158. lpsz++;
  160. if(wUUIDFromString(lpsz, pguid) != TRUE)
  161. return FALSE;
  163. lpsz +=36;
  165. if (*lpsz == '}' )
  166. lpsz++;
  168. if (*lpsz != '\0') // check for zero terminated string - test bug #18307
  169. {
  170. return FALSE;
  171. }
  173. return TRUE;
  174. }
  177. PTCHAR GuidToString(
  178. PTCHAR s,
  179. LPGUID piid
  180. )
  181. {
  182. wsprintf(s, TEXT("%x-%x-%x-%x%x%x%x%x%x%x%x"),
  183. piid->Data1, piid->Data2,
  184. piid->Data3,
  185. piid->Data4[0], piid->Data4[1],
  186. piid->Data4[2], piid->Data4[3],
  187. piid->Data4[4], piid->Data4[5],
  188. piid->Data4[6], piid->Data4[7]);
  190. return(s);
  191. }
  193. #if 0
  194. void WackOnFile(void)
  195. {
  196. ULONG Status;
  197. HANDLE FH;
  200. FH = CreateFile("e:\\foo.baz",
  201. GENERIC_READ,
  202. FILE_SHARE_READ,
  203. NULL,
  204. OPEN_EXISTING,
  205. FILE_ATTRIBUTE_NORMAL,
  206. NULL);
  208. if (FH != INVALID_HANDLE_VALUE)
  209. {
  210. Status = ERROR_SUCCESS;
  211. CloseHandle(FH);
  212. } else {
  213. Status = GetLastError();
  214. }
  216. printf("CreateFile --> %d\n", Status);
  218. }
  220. void CheckOwnPriv(
  221. void
  222. )
  223. {
  224. UCHAR Buffer[4096];
  225. HANDLE TokenHandle;
  226. ULONG SizeNeeded;
  227. BOOL b;
  228. ULONG i;
  229. PTOKEN_PRIVILEGES TokenPrivInfo;
  231. if (! ImpersonateSelf(SecurityImpersonation))
  232. {
  233. printf("Impersonatself -> %d\n", GetLastError());
  234. return;
  235. }
  237. b = OpenThreadToken(GetCurrentThread(),
  238. TOKEN_QUERY,
  239. TRUE,
  240. &TokenHandle);
  242. if (! b)
  243. {
  244. printf("OpenThreadToken failed %d\n", GetLastError());
  245. return;
  246. }
  248. printf("OpenThreadToken succeeded\n");
  250. TokenPrivInfo = (PTOKEN_PRIVILEGES)Buffer;
  251. b = GetTokenInformation(TokenHandle,
  252. TokenPrivileges,
  253. TokenPrivInfo,
  254. sizeof(Buffer),
  255. &SizeNeeded);
  256. printf("GetTokenInformation(YokenPriv) -> %s (%d), sizeNeeded = %d\n",
  257. b ? "TRUE" : "FALSE", GetLastError(),
  258. SizeNeeded);
  260. RevertToSelf();
  261. if (b)
  262. {
  263. printf("Priv count is %d\n", TokenPrivInfo->PrivilegeCount);
  264. for (i = 0; i < TokenPrivInfo->PrivilegeCount; i++)
  265. {
  266. UCHAR PrivName[1024];
  267. ULONG SizePrivName = sizeof(PrivName);
  269. if ( ! LookupPrivilegeName(NULL,
  270. &TokenPrivInfo->Privileges[i].Luid,
  271. PrivName,
  272. &SizePrivName))
  273. {
  274. sprintf(PrivName, "[Error %d]", GetLastError());
  275. }
  277. printf("Priv %s %x%x has attr %x\n",
  278. PrivName,
  279. TokenPrivInfo->Privileges[i].Luid.HighPart,
  280. TokenPrivInfo->Privileges[i].Luid.LowPart,
  281. TokenPrivInfo->Privileges[i].Attributes);
  282. }
  283. printf("\n");
  284. }
  285. }
  287. PCHAR SidUsage[] =
  288. {
  289. "SidTypeZero",
  290. "SidTypeUser",
  291. "SidTypeGroup",
  292. "SidTypeDomain",
  293. "SidTypeAlias",
  294. "SidTypeWellKnownGroup",
  295. "SidTypeDeletedAccount",
  296. "SidTypeInvalid",
  297. "SidTypeUnknown",
  298. "SidTypeComputer",
  299. };
  301. void GetCallerInfo(BOOLEAN Impersonating)
  302. {
  303. UCHAR Buffer[4096];
  304. PTOKEN_USER TokenUserInfo = (PTOKEN_USER)Buffer;
  305. PSID_AND_ATTRIBUTES SidAndAttributes = &TokenUserInfo->User;
  306. PSID Sid;
  307. HANDLE TokenHandle;
  308. ULONG SizeNeeded;
  309. BOOLEAN b;
  310. CHAR Name[MAX_PATH];
  311. CHAR Domain[MAX_PATH];
  312. ULONG NameSize = sizeof(Name);
  313. ULONG DomainSize = sizeof(Domain);
  314. SID_NAME_USE SidNameUse;
  315. ULONG i;
  317. PUCHAR SidBuffer;
  318. SID_IDENTIFIER_AUTHORITY NtAuthority = SECURITY_NT_AUTHORITY;
  319. PTOKEN_PRIVILEGES TokenPrivInfo;
  321. SidBuffer = malloc(RtlLengthRequiredSid( 1 ));
  322. RtlInitializeSid( SidBuffer, &NtAuthority, 1);
  323. *(RtlSubAuthoritySid( SidBuffer, 0 )) = SECURITY_LOCAL_SYSTEM_RID;
  325. b = OpenThreadToken(GetCurrentThread(),
  326. TOKEN_QUERY,
  327. TRUE,
  328. &TokenHandle);
  330. if (! b)
  331. {
  332. printf("OpenThreadToken failed %d\n", GetLastError());
  333. return;
  334. }
  336. printf("OpenThreadToken succeeded\n");
  338. TokenPrivInfo = (PTOKEN_PRIVILEGES)Buffer;
  339. b = GetTokenInformation(TokenHandle,
  340. TokenPrivileges,
  341. TokenPrivInfo,
  342. sizeof(Buffer),
  343. &SizeNeeded);
  344. printf("GetTokenInformation(YokenPriv) -> %s (%d), sizeNeeded = %d\n",
  345. b ? "TRUE" : "FALSE", GetLastError(),
  346. SizeNeeded);
  347. if (b)
  348. {
  349. RpcRevertToSelf();
  350. printf("Priv count is %d\n", TokenPrivInfo->PrivilegeCount);
  351. for (i = 0; i < TokenPrivInfo->PrivilegeCount; i++)
  352. {
  353. UCHAR PrivName[1024];
  354. ULONG SizePrivName = sizeof(PrivName);
  356. if ( ! LookupPrivilegeName(NULL,
  357. &TokenPrivInfo->Privileges[i].Luid,
  358. PrivName,
  359. &SizePrivName))
  360. {
  361. sprintf(PrivName, "[Error %d]", GetLastError());
  362. }
  364. printf("Priv %s %x%x has attr %x\n",
  365. PrivName,
  366. TokenPrivInfo->Privileges[i].Luid.HighPart,
  367. TokenPrivInfo->Privileges[i].Luid.LowPart,
  368. TokenPrivInfo->Privileges[i].Attributes);
  369. }
  370. printf("\n");
  371. RpcImpersonateClient(0);
  372. }
  376. b = GetTokenInformation(TokenHandle,
  377. TokenUser,
  378. TokenUserInfo,
  379. sizeof(Buffer),
  380. &SizeNeeded);
  381. printf("GetTokenInformation -> %s (%d), sizeNeeded = %d\n",
  382. b ? "TRUE" : "FALSE", GetLastError(),
  383. SizeNeeded);
  384. if (b)
  385. {
  386. if (Impersonating)
  387. {
  388. RpcRevertToSelf();
  389. }
  390. Sid = SidAndAttributes->Sid;
  392. if (EqualSid(Sid, (PSID)SidBuffer) && GetLastError() == ERROR_SUCCESS)
  393. {
  394. printf("Called by LocalSystem !!\n");
  395. } else {
  396. printf("EqualSid %d\n", GetLastError());
  397. }
  399. b = LookupAccountSid(NULL,
  400. Sid,
  401. Name,
  402. &NameSize,
  403. Domain,
  404. &DomainSize,
  405. &SidNameUse);
  407. if (Impersonating)
  408. {
  409. RpcImpersonateClient(0);
  410. }
  411. if (b)
  412. {
  413. printf("Account: %s\\%s Type %s\n", Domain, Name, SidUsage[SidNameUse]);
  414. } else {
  415. printf("LookupAccountSid %d\n", GetLastError());
  416. }
  417. }
  418. CloseHandle(TokenHandle);
  419. }
  420. #endif
  422. void EventCallbackRoutine(PWNODE_HEADER WnodeHeader, ULONG Context);
  424. #define DATA_PROVIDER_PNPID_GUID \
  425. { 0xc7bf35d2,0xaadb,0x11d1, { 0xbf,0x4a,0x00,0xa0,0xc9,0x06,0x29,0x10 } }
  426. GUID GuidXYZ = DATA_PROVIDER_PNPID_GUID;
  428. ULONG EventsReceived;
  430. void EventCallbackRoutine(PWNODE_HEADER WnodeHeader, ULONG Context)
  431. {
  432. PWNODE_SINGLE_INSTANCE WnodeSI = (PWNODE_SINGLE_INSTANCE)WnodeHeader;
  433. PWNODE_HEADER Wnode = WnodeHeader;
  434. LPGUID EventGuid = &WnodeHeader->Guid;
  435. CHAR s[MAX_PATH];
  436. ULONG Status;
  437. WMIHANDLE Handle;
  438. #if 0
  439. GetCallerInfo(FALSE);
  441. RevertToSelf();
  443. GetCallerInfo(FALSE);
  444. WackOnFile();
  446. Status = RpcImpersonateClient(0);
  447. printf("RpcImpersonateClient -> %d\n", Status);
  448. if (Status == ERROR_SUCCESS)
  449. {
  450. WmiOpenBlock(&GuidXYZ, GENERIC_READ, &Handle);
  451. GetCallerInfo(TRUE);
  452. WackOnFile();
  453. RpcRevertToSelf();
  454. }
  455. #endif
  456. EventsReceived++;
  458. printf("Receieved event for guid %s\n", GuidToString(s, EventGuid));
  460. printf("BufferSize = 0x%x\n", Wnode->BufferSize);
  461. printf("ProviderId = %x\n", Wnode->ProviderId); // Provider Id of driver returning this buffer
  462. printf("Version = %x\n", Wnode->Version); // Reserved
  463. printf("Linkage = %x\n", Wnode->Linkage); // Linkage field reserved for WMI
  464. printf("ClientContext = %x\n", Wnode->ClientContext);
  465. printf("Flags = %x\n", Wnode->Flags); // Flags, see below
  467. if (Wnode->Flags & WNODE_FLAG_SINGLE_INSTANCE)
  468. {
  469. printf("WNODE_SINGLE_INSTANCE\n");
  470. printf("OffsetInstanceName = %x\n", WnodeSI->OffsetInstanceName);
  471. printf("InstanceIndex = %x\n", WnodeSI->InstanceIndex); // (Static Instance Names)
  473. printf("DataBlockOffset = %x\n", WnodeSI->DataBlockOffset); // offset from beginning of WNODE to data block
  474. printf("SizeDataBlock = %x\n", WnodeSI->SizeDataBlock); // Size of data block for instance
  477. }
  479. printf("\n%d events received\n", EventsReceived);
  480. }
  482. #if 0
  483. #define WmiRpcProtocolSequence1 TEXT("ncacn_np")
  484. #define WmiRpcProtocolSequence2 TEXT("ncalrpc")
  485. #define MaxRpcCalls RPC_C_PROTSEQ_MAX_REQS_DEFAULT
  487. void
  488. CreateEndpoints(void)
  489. {
  490. ULONG i;
  491. ULONG Status;
  492. CHAR UniqueEndpoint[MAX_PATH];
  493. SECURITY_DESCRIPTOR SD;
  495. InitializeSecurityDescriptor(&SD, SECURITY_DESCRIPTOR_REVISION);
  496. SetSecurityDescriptorDacl(&SD, TRUE, NULL, FALSE);
  498. for (i = 0; i < 20; i++)
  499. {
  500. sprintf(UniqueEndpoint, "TESTLRPCEP_%x", i);
  502. Status = RpcServerUseProtseqEp(WmiRpcProtocolSequence2,
  503. MaxRpcCalls,
  504. UniqueEndpoint,
  505. &SD); // Security descriptor
  507. if (Status != ERROR_SUCCESS)
  508. {
  509. printf("RpcServerUseProtseqEp failed %d\n", Status);
  510. }
  512. }
  514. for (i = 0; i < 20; i++)
  515. {
  516. sprintf(UniqueEndpoint, "\\pipe\\TESTEP_%x", i);
  518. Status = RpcServerUseProtseqEp(WmiRpcProtocolSequence1,
  519. MaxRpcCalls,
  520. UniqueEndpoint,
  521. &SD); // Security descriptor
  523. if (Status != ERROR_SUCCESS)
  524. {
  525. printf("RpcServerUseProtseqEp failed %d\n", Status);
  526. }
  528. }
  529. }
  530. #endif
  532. PWNODE_HEADER EventPtrBuffer;
  533. int _cdecl main(int argc, char *argv[])
  534. {
  535. ULONG Status;
  536. GUID Guid;
  537. ULONG c,i;
  539. #if 0
  540. c = 1;
  541. for (i = 0; i < 101; i++)
  542. {
  543. c += i;
  544. }
  545. printf("c = %d\n",c);
  546. #endif
  548. if ((argc != 2) && (argc != 3))
  549. {
  550. printf("getevent <guid>\n");
  551. return(0);
  552. }
  554. #if 0
  555. CheckOwnPriv();
  556. if (argc == 3)
  557. {
  558. printf("Creating endpoints\n");
  559. CreateEndpoints();
  560. }
  561. #endif
  563. //
  564. // Parse the guid parameter
  565. if (! wGUIDFromString(argv[1], &Guid))
  566. {
  567. printf("Bad guid %s\n", argv[1]);
  568. return(0);
  569. }
  572. Status = WmiNotificationRegistration(&Guid,
  573. TRUE,
  574. EventCallbackRoutine,
  575. 0,
  576. NOTIFICATION_CALLBACK_DIRECT);
  577. if (Status != ERROR_SUCCESS)
  578. {
  579. printf("WMINotificationRegistration %d\n", Status);
  580. return(1);
  581. }
  583. // Loop forever receiving events
  584. while (1) Sleep(1000*1000);
  585. return(ERROR_SUCCESS);
  586. }