archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
3 Commits
1 Branch
0 Tags
4.9 GiB
Tree: 827363a95b
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '827363a95b'
${ noResults }
windows-server-2003/ds/security/authz/test/benchmark/ntaccess.c

196 lines
4.9 KiB
Raw Normal View History

commiting as it is
4 years ago
  1. #include "pch.h"
  2. #pragma hdrstop
  4. #include "bmcommon.h"
  6. static GENERIC_MAPPING FileGenericMapping =
  7. {
  8. FILE_GENERIC_READ,
  9. FILE_GENERIC_WRITE,
  10. FILE_GENERIC_EXECUTE,
  11. FILE_ALL_ACCESS
  12. };
  14. static PSECURITY_DESCRIPTOR pSD;
  15. static HANDLE hToken;
  18. EXTERN_C
  19. DWORD
  20. InitNtAccessChecks()
  21. {
  22. DWORD dwError=NO_ERROR;
  23. BOOL b;
  24. PWCHAR szMsg=NULL;
  25. HANDLE hProcessToken=NULL;
  27. b = ConvertStringSecurityDescriptorToSecurityDescriptorW(g_szSd,
  28. SDDL_REVISION_1,
  29. &pSD, NULL);
  31. if (!b)
  32. {
  33. szMsg = L"SDDL";
  34. goto GetError;
  35. }
  37. if ( !OpenProcessToken( GetCurrentProcess(), TOKEN_DUPLICATE,
  38. &hProcessToken ) )
  39. {
  40. szMsg = L"OpenProcessToken";
  41. goto GetError;
  42. }
  45. if ( !DuplicateToken( hProcessToken, SecurityImpersonation, &hToken ) )
  46. {
  47. szMsg = L"DuplicateToken";
  48. goto GetError;
  49. }
  52. if ( !SetThreadToken( NULL, hToken ) )
  53. {
  54. szMsg = L"SetThreadToken";
  55. goto GetError;
  56. }
  58. Cleanup:
  60. if ( hProcessToken )
  61. {
  62. CloseHandle( hProcessToken );
  63. }
  65. if ( szMsg )
  66. {
  67. wprintf (L"InitNtAccessChecks: %s: %x\n", szMsg, dwError);
  68. }
  70. return dwError;
  72. GetError:
  73. dwError = GetLastError();
  74. goto Cleanup;
  76. }
  78. EXTERN_C
  79. DWORD
  80. DoNtAccessChecks(
  81. IN ULONG NumChecks,
  82. IN DWORD Flags
  83. )
  84. {
  85. DWORD dwError=NO_ERROR;
  86. PWCHAR StringSD = L"O:BAG:BAD:(OA;;GA;;;WD)S:(AU;FASA;GA;;;WD)";
  87. BOOL b;
  88. ULONG i;
  89. PRIVILEGE_SET Privs = { 0 };
  90. DWORD dwPrivLength=20*sizeof(LUID_AND_ATTRIBUTES);
  91. BOOL fGenOnClose[100];
  92. PWCHAR szMsg=NULL;
  93. HANDLE hObj= (HANDLE) 333444;
  95. if ( Flags & BMF_GenerateAudit )
  96. {
  97. if ( Flags & BMF_UseObjTypeList )
  98. {
  99. for (i=0; i < NumChecks; i++)
  100. {
  101. if (!AccessCheckByTypeResultListAndAuditAlarm(
  102. L"supersystemwithaudit",
  103. hObj,
  104. L"Kernel speed test",
  105. L"sample operation",
  106. pSD,
  107. g_Sid1,
  108. DESIRED_ACCESS,
  109. AuditEventObjectAccess,
  110. 0,
  111. ObjectTypeList,
  112. ObjectTypeListLength,
  113. &FileGenericMapping,
  114. FALSE,
  115. dwNtGrantedAccess,
  116. fNtAccessCheckResult,
  117. fGenOnClose ))
  118. {
  119. szMsg = L"AccessCheck";
  120. goto GetError;
  121. }
  122. }
  123. }
  124. else
  125. {
  126. for (i=0; i < NumChecks; i++)
  127. {
  128. if (!AccessCheckAndAuditAlarm(
  129. L"mysystem",
  130. hObj,
  131. L"File",
  132. L"file-object",
  133. pSD, DESIRED_ACCESS,
  134. &FileGenericMapping,
  135. FALSE,
  136. &dwNtGrantedAccess[0],
  137. &fNtAccessCheckResult[0],
  138. &fGenOnClose[0] ))
  139. {
  140. szMsg = L"AccessCheck";
  141. goto GetError;
  142. }
  143. }
  144. }
  145. }
  146. else
  147. {
  148. if ( Flags & BMF_UseObjTypeList )
  149. {
  150. for (i=0; i < NumChecks; i++)
  151. {
  152. if (!AccessCheckByTypeResultList(
  153. pSD,
  154. g_Sid1,
  155. hToken, DESIRED_ACCESS,
  156. ObjectTypeList,
  157. ObjectTypeListLength,
  158. &FileGenericMapping,
  159. &Privs, &dwPrivLength,
  160. dwNtGrantedAccess,
  161. fNtAccessCheckResult ))
  162. {
  163. szMsg = L"AccessCheck";
  164. goto GetError;
  165. }
  166. }
  167. }
  168. else
  169. {
  170. for (i=0; i < NumChecks; i++)
  171. {
  172. if (!AccessCheck( pSD, hToken, DESIRED_ACCESS,
  173. &FileGenericMapping,
  174. &Privs, &dwPrivLength,
  175. &dwNtGrantedAccess[0],
  176. &fNtAccessCheckResult[0] ))
  177. {
  178. szMsg = L"AccessCheck";
  179. goto GetError;
  180. }
  181. }
  182. }
  183. }
  185. Cleanup:
  186. if ( szMsg )
  187. {
  188. wprintf (L"%s: %x\n", szMsg, dwError);
  189. }
  191. return dwError;
  193. GetError:
  194. dwError = GetLastError();
  195. goto Cleanup;
  196. }