archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
2 Commits
1 Branch
0 Tags
1.5 GiB
Tree: 7b07a90fc1
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '7b07a90fc1'
${ noResults }
windows-server-2003/ds/security/protocols/kerberos/utest/logon/sclogon.cxx

996 lines
23 KiB
Raw Normal View History

commiting as it is
4 years ago
  1. /*--
  3. Copyright (c) 1987-1993 Microsoft Corporation
  5. Module Name:
  7. ssptest.c
  9. Abstract:
  11. Test program for the NtLmSsp service.
  13. Author:
  15. 28-Jun-1993 (cliffv)
  17. Environment:
  19. User mode only.
  20. Contains NT-specific code.
  21. Requires ANSI C extensions: slash-slash comments, long external names.
  23. Revision History:
  25. --*/
  28. //
  29. // Common include files.
  30. //
  32. extern "C"
  33. {
  34. #include <nt.h>
  35. #include <ntrtl.h>
  36. #include <nturtl.h>
  37. #include <ntseapi.h>
  38. #include <ntlsa.h>
  39. #include <windef.h>
  40. #include <winbase.h>
  41. #include <winsvc.h> // Needed for service controller APIs
  42. #include <lmcons.h>
  43. #include <lmerr.h>
  44. #include <lmaccess.h>
  45. #include <lmsname.h>
  46. #include <rpc.h>
  47. #include <stdio.h> // printf
  48. #include <stdlib.h> // strtoul
  49. }
  50. #include <wchar.h>
  51. extern "C" {
  52. #include <netlib.h> // NetpGetLocalDomainId
  53. #include <tstring.h> // NetpAllocWStrFromWStr
  54. #define SECURITY_KERBEROS
  55. #define SECURITY_PACKAGE
  56. #include <security.h> // General definition of a Security Support Provider
  57. #include <secint.h>
  58. #include <kerbcomm.h>
  59. #include <negossp.h>
  60. #include <wincrypt.h>
  61. #include <cryptui.h>
  62. }
  63. #include <sclogon.h>
  67. BOOLEAN QuietMode = FALSE; // Don't be verbose
  68. BOOLEAN DoAnsi = FALSE;
  69. ULONG RecursionDepth = 0;
  70. CredHandle ServerCredHandleStorage;
  71. PCredHandle ServerCredHandle = NULL;
  72. #define MAX_RECURSION_DEPTH 1
  75. VOID
  76. DumpBuffer(
  77. PVOID Buffer,
  78. DWORD BufferSize
  79. )
  80. /*++
  82. Routine Description:
  84. Dumps the buffer content on to the debugger output.
  86. Arguments:
  88. Buffer: buffer pointer.
  90. BufferSize: size of the buffer.
  92. Return Value:
  94. none
  96. --*/
  97. {
  98. #define NUM_CHARS 16
  100. DWORD i, limit;
  101. CHAR TextBuffer[NUM_CHARS + 1];
  102. LPBYTE BufferPtr = (PBYTE) Buffer;
  105. printf("------------------------------------\n");
  107. //
  108. // Hex dump of the bytes
  109. //
  110. limit = ((BufferSize - 1) / NUM_CHARS + 1) * NUM_CHARS;
  112. for (i = 0; i < limit; i++) {
  114. if (i < BufferSize) {
  116. printf("%02x ", BufferPtr[i]);
  118. if (BufferPtr[i] < 31 ) {
  119. TextBuffer[i % NUM_CHARS] = '.';
  120. } else if (BufferPtr[i] == '\0') {
  121. TextBuffer[i % NUM_CHARS] = ' ';
  122. } else {
  123. TextBuffer[i % NUM_CHARS] = (CHAR) BufferPtr[i];
  124. }
  126. } else {
  128. printf(" ");
  129. TextBuffer[i % NUM_CHARS] = ' ';
  131. }
  133. if ((i + 1) % NUM_CHARS == 0) {
  134. TextBuffer[NUM_CHARS] = 0;
  135. printf(" %s\n", TextBuffer);
  136. }
  138. }
  140. printf("------------------------------------\n");
  141. }
  144. VOID
  145. PrintTime(
  146. LPSTR Comment,
  147. TimeStamp ConvertTime
  148. )
  149. /*++
  151. Routine Description:
  153. Print the specified time
  155. Arguments:
  157. Comment - Comment to print in front of the time
  159. Time - Local time to print
  161. Return Value:
  163. None
  165. --*/
  166. {
  167. LARGE_INTEGER LocalTime;
  169. LocalTime.HighPart = ConvertTime.HighPart;
  170. LocalTime.LowPart = ConvertTime.LowPart;
  172. printf( "%s", Comment );
  174. //
  175. // If the time is infinite,
  176. // just say so.
  177. //
  179. if ( LocalTime.HighPart == 0x7FFFFFFF && LocalTime.LowPart == 0xFFFFFFFF ) {
  180. printf( "Infinite\n" );
  182. //
  183. // Otherwise print it more clearly
  184. //
  186. } else {
  188. TIME_FIELDS TimeFields;
  190. RtlTimeToTimeFields( &LocalTime, &TimeFields );
  192. printf( "%ld/%ld/%ld %ld:%2.2ld:%2.2ld\n",
  193. TimeFields.Month,
  194. TimeFields.Day,
  195. TimeFields.Year,
  196. TimeFields.Hour,
  197. TimeFields.Minute,
  198. TimeFields.Second );
  199. }
  201. }
  203. VOID
  204. PrintStatus(
  205. NET_API_STATUS NetStatus
  206. )
  207. /*++
  209. Routine Description:
  211. Print a net status code.
  213. Arguments:
  215. NetStatus - The net status code to print.
  217. Return Value:
  219. None
  221. --*/
  222. {
  223. printf( "Status = %lu 0x%lx", NetStatus, NetStatus );
  225. switch (NetStatus) {
  226. case NERR_Success:
  227. printf( " NERR_Success" );
  228. break;
  230. case NERR_DCNotFound:
  231. printf( " NERR_DCNotFound" );
  232. break;
  234. case ERROR_LOGON_FAILURE:
  235. printf( " ERROR_LOGON_FAILURE" );
  236. break;
  238. case ERROR_ACCESS_DENIED:
  239. printf( " ERROR_ACCESS_DENIED" );
  240. break;
  242. case ERROR_NOT_SUPPORTED:
  243. printf( " ERROR_NOT_SUPPORTED" );
  244. break;
  246. case ERROR_NO_LOGON_SERVERS:
  247. printf( " ERROR_NO_LOGON_SERVERS" );
  248. break;
  250. case ERROR_NO_SUCH_DOMAIN:
  251. printf( " ERROR_NO_SUCH_DOMAIN" );
  252. break;
  254. case ERROR_NO_TRUST_LSA_SECRET:
  255. printf( " ERROR_NO_TRUST_LSA_SECRET" );
  256. break;
  258. case ERROR_NO_TRUST_SAM_ACCOUNT:
  259. printf( " ERROR_NO_TRUST_SAM_ACCOUNT" );
  260. break;
  262. case ERROR_DOMAIN_TRUST_INCONSISTENT:
  263. printf( " ERROR_DOMAIN_TRUST_INCONSISTENT" );
  264. break;
  266. case ERROR_BAD_NETPATH:
  267. printf( " ERROR_BAD_NETPATH" );
  268. break;
  270. case ERROR_FILE_NOT_FOUND:
  271. printf( " ERROR_FILE_NOT_FOUND" );
  272. break;
  274. case NERR_NetNotStarted:
  275. printf( " NERR_NetNotStarted" );
  276. break;
  278. case NERR_WkstaNotStarted:
  279. printf( " NERR_WkstaNotStarted" );
  280. break;
  282. case NERR_ServerNotStarted:
  283. printf( " NERR_ServerNotStarted" );
  284. break;
  286. case NERR_BrowserNotStarted:
  287. printf( " NERR_BrowserNotStarted" );
  288. break;
  290. case NERR_ServiceNotInstalled:
  291. printf( " NERR_ServiceNotInstalled" );
  292. break;
  294. case NERR_BadTransactConfig:
  295. printf( " NERR_BadTransactConfig" );
  296. break;
  298. case SEC_E_NO_SPM:
  299. printf( " SEC_E_NO_SPM" );
  300. break;
  301. case SEC_E_BAD_PKGID:
  302. printf( " SEC_E_BAD_PKGID" ); break;
  303. case SEC_E_NOT_OWNER:
  304. printf( " SEC_E_NOT_OWNER" ); break;
  305. case SEC_E_CANNOT_INSTALL:
  306. printf( " SEC_E_CANNOT_INSTALL" ); break;
  307. case SEC_E_INVALID_TOKEN:
  308. printf( " SEC_E_INVALID_TOKEN" ); break;
  309. case SEC_E_CANNOT_PACK:
  310. printf( " SEC_E_CANNOT_PACK" ); break;
  311. case SEC_E_QOP_NOT_SUPPORTED:
  312. printf( " SEC_E_QOP_NOT_SUPPORTED" ); break;
  313. case SEC_E_NO_IMPERSONATION:
  314. printf( " SEC_E_NO_IMPERSONATION" ); break;
  315. case SEC_E_LOGON_DENIED:
  316. printf( " SEC_E_LOGON_DENIED" ); break;
  317. case SEC_E_UNKNOWN_CREDENTIALS:
  318. printf( " SEC_E_UNKNOWN_CREDENTIALS" ); break;
  319. case SEC_E_NO_CREDENTIALS:
  320. printf( " SEC_E_NO_CREDENTIALS" ); break;
  321. case SEC_E_MESSAGE_ALTERED:
  322. printf( " SEC_E_MESSAGE_ALTERED" ); break;
  323. case SEC_E_OUT_OF_SEQUENCE:
  324. printf( " SEC_E_OUT_OF_SEQUENCE" ); break;
  325. case SEC_E_INSUFFICIENT_MEMORY:
  326. printf( " SEC_E_INSUFFICIENT_MEMORY" ); break;
  327. case SEC_E_INVALID_HANDLE:
  328. printf( " SEC_E_INVALID_HANDLE" ); break;
  329. case SEC_E_NOT_SUPPORTED:
  330. printf( " SEC_E_NOT_SUPPORTED" ); break;
  333. }
  335. printf( "\n" );
  336. }
  338. VOID
  339. TestGetKdcCert(
  340. IN LPWSTR ServiceName,
  341. IN LPWSTR ContainerName,
  342. IN LPWSTR CaLocation,
  343. IN LPWSTR CaName
  344. )
  345. {
  346. PCCERT_CONTEXT CertContext = NULL;
  347. DWORD Status = 0;
  348. WCHAR UsageOid[100];
  349. WCHAR ComputerName[100];
  350. ULONG ComputerNameLength = 100;
  351. LPSTR UsageString;
  352. CERT_ENHKEY_USAGE KeyUsage;
  353. CRYPTUI_WIZ_CERT_REQUEST_INFO CertInfo;
  354. CRYPTUI_WIZ_CERT_REQUEST_PVK_NEW PvkNew;
  356. RtlZeroMemory(
  357. &CertInfo,
  358. sizeof(CRYPTUI_WIZ_CERT_REQUEST_INFO)
  359. );
  361. RtlZeroMemory(
  362. &PvkNew,
  363. sizeof(CRYPTUI_WIZ_CERT_REQUEST_PVK_NEW)
  364. );
  366. GetComputerName(
  367. ComputerName,
  368. &ComputerNameLength
  369. );
  371. CertInfo.dwSize = sizeof(CertInfo);
  372. CertInfo.dwPurpose = CRYPTUI_WIZ_CERT_ENROLL;
  373. CertInfo.pwszMachineName = ComputerName; // local computer
  374. CertInfo.pwszAccountName = NULL; // ServiceName;
  375. CertInfo.pAuthentication = NULL; // MBZ
  376. CertInfo.pCertRequestString = NULL; // ??
  377. CertInfo.pwszDesStore = ContainerName;
  378. CertInfo.dwCertOpenStoreFlag = CERT_SYSTEM_STORE_SERVICES;
  379. CertInfo.pRenewCertContext = NULL; // we aren't renewing
  380. CertInfo.dwPvkChoice = CRYPTUI_WIZ_CERT_REQUEST_PVK_CHOICE_NEW;
  381. // generate new key
  382. CertInfo.pPvkNew = &PvkNew;
  383. PvkNew.dwSize = sizeof(PvkNew);
  384. PvkNew.pKeyProvInfo = NULL; // use default provider
  385. PvkNew.dwGenKeyFlags = 0; // CRYPT_MACHINE_KEYSET; // no flags
  386. CertInfo.pwszCALocation = CaLocation; // ignore for no-ui enrollment
  387. CertInfo.pwszCAName = CaName;
  388. CertInfo.dwPostOption = 0; // CRYPTUI_WIZ_CERT_REQUEST_POST_ON_CSP;
  389. KeyUsage.cUsageIdentifier = 1;
  390. UsageString = szOID_PKIX_KP_SERVER_AUTH;
  391. KeyUsage.rgpszUsageIdentifier = &UsageString;
  392. CertInfo.pKeyUsage = &KeyUsage;
  394. CertInfo.pwszFriendlyName = NULL; // friendly name is optional
  395. CertInfo.pwszDescription = NULL; // description is optional
  397. //
  398. // Request a certificate
  399. //
  401. if (!CryptUIWizCertRequest(
  402. CRYPTUI_WIZ_NO_UI,
  403. NULL, // no window
  404. NULL, // no title
  405. &CertInfo,
  406. &CertContext,
  407. &Status
  408. ))
  409. {
  410. printf("CryptUIWizCertRequest failed: 0x%x\n",GetLastError());
  411. return;
  412. }
  413. //
  414. // Check the real status
  415. //
  417. if (Status == CRYPTUI_WIZ_CERT_REQUEST_STATUS_SUCCEEDED)
  418. {
  419. printf("Cert request succeeded!\n");
  420. }
  421. if (Status == CRYPTUI_WIZ_CERT_REQUEST_STATUS_REQUEST_ERROR)
  422. {
  423. printf("Cert request failed: request error\n");
  424. }
  425. if (Status == CRYPTUI_WIZ_CERT_REQUEST_STATUS_REQUEST_DENIED)
  426. {
  427. printf("Cert request denied\n");
  428. }
  429. if (Status == CRYPTUI_WIZ_CERT_REQUEST_STATUS_ISSUED_SEPARATELY)
  430. {
  431. printf("Cert request issued seperately\n");
  432. }
  433. if (Status == CRYPTUI_WIZ_CERT_REQUEST_STATUS_UNDER_SUBMISSION)
  434. {
  435. printf("Cert request under submission\n");
  436. }
  438. return;
  439. }
  441. VOID
  442. TestScLogonRoutine(
  443. IN ULONG Count,
  444. IN LPSTR Pin
  445. )
  446. {
  447. NTSTATUS Status;
  448. PKERB_SMART_CARD_LOGON LogonInfo;
  449. ULONG LogonInfoSize = sizeof(KERB_SMART_CARD_LOGON);
  450. BOOLEAN WasEnabled;
  451. STRING PinString;
  452. STRING Name;
  453. ULONG Dummy;
  454. HANDLE LogonHandle = NULL;
  455. ULONG PackageId;
  456. TOKEN_SOURCE SourceContext;
  457. PKERB_SMART_CARD_PROFILE Profile = NULL;
  458. ULONG ProfileSize;
  459. LUID LogonId;
  460. HANDLE TokenHandle = NULL;
  461. QUOTA_LIMITS Quotas;
  462. NTSTATUS SubStatus;
  463. WCHAR UserNameString[100];
  464. ULONG NameLength = 100;
  465. PUCHAR Where;
  466. ULONG Index;
  467. HANDLE ScHandle = NULL;
  468. PBYTE ScLogonInfo = NULL;
  469. ULONG ScLogonInfoSize;
  470. ULONG WaitResult = 0;
  471. PCCERT_CONTEXT CertContext = NULL;
  473. printf("Waiting for smart card insertion\n");
  475. //
  476. // First register for insertion notification
  477. //
  479. Status = ScHelperInitialize();
  480. if (!NT_SUCCESS(Status))
  481. {
  482. printf("Failed to initialize schelper: 0x%x\n",Status);
  483. return;
  484. }
  486. ScHandle = CreateEvent(NULL, TRUE, FALSE, NULL);
  487. if (ScHandle == NULL)
  488. {
  489. printf("Failed to create event: %d\n",GetLastError());
  490. return;
  491. }
  493. Status = ScHelperWatchForSas(
  494. ScHandle,
  495. &ScLogonInfo
  496. );
  497. if (!NT_SUCCESS(Status))
  498. {
  499. printf("Failed to watch for SAS: 0x%x\n",Status);
  500. return;
  501. }
  503. WaitResult = WaitForSingleObject(ScHandle,INFINITE);
  504. if (WaitResult != WAIT_OBJECT_0)
  505. {
  506. printf("Failed to wait for single object: %d\n",GetLastError());
  507. return;
  508. }
  510. //
  511. // We should now have logon info.
  512. //
  514. if (ScLogonInfo == NULL)
  515. {
  516. printf("Failed to get logon info!\n");
  517. return;
  518. }
  520. ScLogonInfoSize = ((struct LogonInfo *) ScLogonInfo)->dwLogonInfoLen;
  522. Status = ScHelperInitializeContext(
  523. ScLogonInfo,
  524. ScLogonInfoSize
  525. );
  526. if (!NT_SUCCESS(Status))
  527. {
  528. printf("Failed to initialize context: 0x%x\n",Status);
  529. return;
  530. }
  532. ScHelperRelease(ScLogonInfo);
  534. RtlInitString(
  535. &PinString,
  536. Pin
  537. );
  540. LogonInfoSize += (PinString.Length+1 ) * sizeof(WCHAR) + ScLogonInfoSize;
  542. LogonInfo = (PKERB_SMART_CARD_LOGON) LocalAlloc(LMEM_ZEROINIT, LogonInfoSize);
  544. LogonInfo->MessageType = KerbSmartCardLogon;
  547. Where = (PUCHAR) (LogonInfo + 1);
  549. LogonInfo->Pin.Buffer = (LPWSTR) Where;
  550. LogonInfo->Pin.MaximumLength = (USHORT) LogonInfoSize;
  551. RtlAnsiStringToUnicodeString(
  552. &LogonInfo->Pin,
  553. &PinString,
  554. FALSE
  555. );
  556. Where += LogonInfo->Pin.Length + sizeof(WCHAR);
  558. LogonInfo->CspDataLength = ScLogonInfoSize;
  559. LogonInfo->CspData = Where;
  560. RtlCopyMemory(
  561. LogonInfo->CspData,
  562. ScLogonInfo,
  563. ScLogonInfoSize
  564. );
  565. Where += ScLogonInfoSize;
  567. //
  568. // Turn on the TCB privilege
  569. //
  571. Status = RtlAdjustPrivilege(SE_TCB_PRIVILEGE, TRUE, FALSE, &WasEnabled);
  572. if (!NT_SUCCESS(Status))
  573. {
  574. printf("Failed to adjust privilege: 0x%x\n",Status);
  575. return;
  576. }
  577. RtlInitString(
  578. &Name,
  579. "SspTest"
  580. );
  581. Status = LsaRegisterLogonProcess(
  582. &Name,
  583. &LogonHandle,
  584. &Dummy
  585. );
  586. if (!NT_SUCCESS(Status))
  587. {
  588. printf("Failed to register as a logon process: 0x%x\n",Status);
  589. return;
  590. }
  592. strncpy(
  593. SourceContext.SourceName,
  594. "ssptest ",sizeof(SourceContext.SourceName)
  595. );
  596. NtAllocateLocallyUniqueId(
  597. &SourceContext.SourceIdentifier
  598. );
  601. RtlInitString(
  602. &Name,
  603. MICROSOFT_KERBEROS_NAME_A
  604. );
  605. Status = LsaLookupAuthenticationPackage(
  606. LogonHandle,
  607. &Name,
  608. &PackageId
  609. );
  610. if (!NT_SUCCESS(Status))
  611. {
  612. printf("Failed to lookup package %Z: 0x%x\n",&Name, Status);
  613. return;
  614. }
  616. //
  617. // Now call LsaLogonUser
  618. //
  620. RtlInitString(
  621. &Name,
  622. "ssptest"
  623. );
  625. for (Index = 0; Index < Count ; Index++ )
  626. {
  627. printf("Logging on with PIN %s\n",Pin);
  629. Status = LsaLogonUser(
  630. LogonHandle,
  631. &Name,
  632. Interactive,
  633. PackageId,
  634. LogonInfo,
  635. LogonInfoSize,
  636. NULL, // no token groups
  637. &SourceContext,
  638. (PVOID *) &Profile,
  639. &ProfileSize,
  640. &LogonId,
  641. &TokenHandle,
  642. &Quotas,
  643. &SubStatus
  644. );
  645. if (!NT_SUCCESS(Status))
  646. {
  647. printf("lsalogonuser failed: 0x%x\n",Status);
  648. return;
  649. }
  650. if (!NT_SUCCESS(SubStatus))
  651. {
  652. printf("LsalogonUser failed: substatus = 0x%x\n",SubStatus);
  653. return;
  654. }
  656. ImpersonateLoggedOnUser( TokenHandle );
  657. GetUserName(UserNameString,&NameLength);
  658. printf("Username = %ws\n",UserNameString);
  659. RevertToSelf();
  660. NtClose(TokenHandle);
  662. if (Profile->Profile.MessageType = MsV1_0SmartCardProfile)
  663. {
  664. CertContext = CertCreateCertificateContext(
  665. X509_ASN_ENCODING,
  666. Profile->CertificateData,
  667. Profile->CertificateSize
  668. );
  669. if (CertContext == NULL)
  670. {
  671. printf("Failed to create cert context: 0x%x\n",GetLastError());
  672. }
  673. else
  674. {
  675. printf("Built certificate context\n");
  676. CertFreeCertificateContext( CertContext );
  677. CertContext = NULL;
  678. }
  679. }
  680. else
  681. {
  682. printf("No certificate in profile\n");
  683. }
  687. LsaFreeReturnBuffer(Profile);
  688. Profile = NULL;
  690. }
  692. }
  695. VOID
  696. PrintKdcName(
  697. IN PKERB_INTERNAL_NAME Name
  698. )
  699. {
  700. ULONG Index;
  701. for (Index = 0; Index < Name->NameCount ; Index++ )
  702. {
  703. printf(" %wZ ",&Name->Names[Index]);
  704. }
  705. printf("\n");
  706. }
  708. VOID
  709. TestCallPackageRoutine(
  710. IN LPWSTR Function
  711. )
  712. {
  713. NTSTATUS Status;
  714. BOOLEAN WasEnabled;
  715. STRING Name;
  716. ULONG Dummy;
  717. HANDLE LogonHandle = NULL;
  718. ULONG PackageId;
  719. KERB_DEBUG_REQUEST DebugRequest;
  720. KERB_QUERY_TKT_CACHE_REQUEST CacheRequest;
  721. PKERB_QUERY_TKT_CACHE_RESPONSE CacheResponse = NULL;
  722. ULONG Index;
  723. PVOID Response;
  724. ULONG ResponseSize;
  725. NTSTATUS SubStatus;
  726. BOOLEAN Trusted = TRUE;
  728. //
  729. // Turn on the TCB privilege
  730. //
  732. Status = RtlAdjustPrivilege(SE_TCB_PRIVILEGE, TRUE, FALSE, &WasEnabled);
  733. if (!NT_SUCCESS(Status))
  734. {
  735. printf("Failed to adjust privilege: 0x%x\n",Status);
  736. Trusted = FALSE;
  737. }
  738. RtlInitString(
  739. &Name,
  740. "SspTest"
  741. );
  743. if (Trusted)
  744. {
  745. Status = LsaRegisterLogonProcess(
  746. &Name,
  747. &LogonHandle,
  748. &Dummy
  749. );
  751. }
  752. else
  753. {
  754. Status = LsaConnectUntrusted(
  755. &LogonHandle
  756. );
  757. }
  759. if (!NT_SUCCESS(Status))
  760. {
  761. printf("Failed to register as a logon process: 0x%x\n",Status);
  762. return;
  763. }
  767. RtlInitString(
  768. &Name,
  769. MICROSOFT_KERBEROS_NAME_A
  770. );
  771. Status = LsaLookupAuthenticationPackage(
  772. LogonHandle,
  773. &Name,
  774. &PackageId
  775. );
  776. if (!NT_SUCCESS(Status))
  777. {
  778. printf("Failed to lookup package %Z: 0x%x\n",&Name, Status);
  779. return;
  780. }
  782. if (_wcsicmp(Function,L"bp") == 0)
  783. {
  784. DebugRequest.MessageType = KerbDebugRequestMessage;
  785. DebugRequest.DebugRequest = KERB_DEBUG_REQ_BREAKPOINT;
  787. Status = LsaCallAuthenticationPackage(
  788. LogonHandle,
  789. PackageId,
  790. &DebugRequest,
  791. sizeof(DebugRequest),
  792. &Response,
  793. &ResponseSize,
  794. &SubStatus
  795. );
  796. if (!NT_SUCCESS(Status) || !NT_SUCCESS(SubStatus))
  797. {
  798. printf("bp failed: 0x%x, 0x %x\n",Status, SubStatus);
  799. }
  801. }
  802. else if (_wcsicmp(Function,L"tickets") == 0)
  803. {
  804. CacheRequest.MessageType = KerbQueryTicketCacheMessage;
  805. CacheRequest.LogonId.LowPart = 0;
  806. CacheRequest.LogonId.HighPart = 0;
  808. Status = LsaCallAuthenticationPackage(
  809. LogonHandle,
  810. PackageId,
  811. &CacheRequest,
  812. sizeof(CacheRequest),
  813. (PVOID *) &CacheResponse,
  814. &ResponseSize,
  815. &SubStatus
  816. );
  817. if (!NT_SUCCESS(Status) || !NT_SUCCESS(SubStatus))
  818. {
  819. printf("bp failed: 0x%x, 0x %x\n",Status, SubStatus);
  820. }
  821. else
  822. {
  823. printf("Cached Tickets:\n");
  824. for (Index = 0; Index < CacheResponse->CountOfTickets ; Index++ )
  825. {
  826. printf("\tServer: %wZ\n",&CacheResponse->Tickets[Index].ServerName);
  827. PrintTime("\t\tEnd Time: ",CacheResponse->Tickets[Index].EndTime);
  828. PrintTime("\t\tRenew Time: ",CacheResponse->Tickets[Index].RenewTime);
  830. }
  831. }
  834. }
  836. if (LogonHandle != NULL)
  837. {
  838. LsaDeregisterLogonProcess(LogonHandle);
  839. }
  841. if (CacheResponse != NULL)
  842. {
  843. LsaFreeReturnBuffer(CacheResponse);
  844. }
  845. }
  848. int __cdecl
  849. main(
  850. IN int argc,
  851. IN char ** argv
  852. )
  853. /*++
  855. Routine Description:
  857. Drive the NtLmSsp service
  859. Arguments:
  861. argc - the number of command-line arguments.
  863. argv - an array of pointers to the arguments.
  865. Return Value:
  867. Exit status
  869. --*/
  870. {
  871. LPSTR argument;
  872. int i;
  873. ULONG j;
  874. ULONG Iterations;
  875. LPSTR Pin;
  876. LPWSTR PackageFunction;
  877. ULONG ContextReq = 0;
  878. WCHAR ContainerName[100];
  879. WCHAR CaName[100];
  880. WCHAR CaLocation[100];
  881. WCHAR ServiceName[100];
  886. enum {
  887. NoAction,
  888. #define LOGON_PARAM "/Logon"
  889. #define LOGON_PARAM2 "/Logon:"
  890. TestLogon,
  891. #define PACKAGE_PARAM "/callpackage:"
  892. TestPackage,
  893. #define CERT_PARAM "/getcert"
  894. GetCert,
  895. } Action = NoAction;
  901. //
  902. // Loop through the arguments handle each in turn
  903. //
  905. for ( i=1; i<argc; i++ ) {
  907. argument = argv[i];
  909. //
  910. // Handle /ConfigureService
  911. //
  913. if ( _strnicmp( argument, LOGON_PARAM, sizeof(LOGON_PARAM)-1 ) == 0 ) {
  914. if ( Action != NoAction ) {
  915. goto Usage;
  916. }
  917. Iterations = 1;
  918. if ( _strnicmp( argument, LOGON_PARAM2, sizeof(LOGON_PARAM2)-1 ) == 0 ) {
  919. sscanf(&argument[sizeof(LOGON_PARAM2)-1], "%d",&Iterations);
  920. }
  923. Action = TestLogon;
  925. if (argc < i + 1)
  926. {
  927. goto Usage;
  928. }
  929. Pin = argv[++i];
  930. } else if ( _strnicmp( argument, PACKAGE_PARAM, sizeof(PACKAGE_PARAM) - 1 ) == 0 ) {
  931. if ( Action != NoAction ) {
  932. goto Usage;
  933. }
  935. argument = &argument[sizeof(PACKAGE_PARAM)-1];
  936. PackageFunction = NetpAllocWStrFromStr( argument );
  938. Action = TestPackage;
  939. } else if ( _stricmp( argument, CERT_PARAM) == 0 ) {
  940. if ( Action != NoAction ) {
  941. goto Usage;
  942. }
  943. if (argc < i + 4)
  944. {
  945. goto Usage;
  946. }
  948. mbstowcs(ServiceName,argv[++i],100);
  949. mbstowcs(ContainerName,argv[++i],100);
  950. mbstowcs(CaLocation,argv[++i],100);
  951. mbstowcs(CaName,argv[++i],100);
  953. Action = GetCert;
  954. } else {
  955. printf("Invalid parameter : %s\n",argument);
  956. goto Usage;
  957. }
  960. }
  962. //
  963. // Perform the action requested
  964. //
  966. switch ( Action ) {
  968. case TestPackage:
  969. TestCallPackageRoutine(PackageFunction);
  970. break;
  972. case TestLogon :
  973. TestScLogonRoutine(
  974. Iterations,
  975. Pin
  976. );
  977. break;
  978. case GetCert:
  979. TestGetKdcCert(
  980. ServiceName,
  981. ContainerName,
  982. CaLocation,
  983. CaName
  984. );
  986. }
  987. return 0;
  988. Usage:
  989. printf("%s /logon username password [domainname]\n",argv[0]);
  990. printf("%s /testssp [/package:pacakgename] [/target:targetname] [/user:username] [/serveruser:username]\n",
  991. argv[0]);
  992. printf("%s /getcert service-name container-name ca-location ca-name\n",
  993. argv[0]);
  994. return 0;
  996. }