archive
/
windows-xp
mirror of https://github.com/tongzx/nt5src
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Source code of Windows XP (NT5)
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
8 Commits
1 Branch
0 Tags
2.0 GiB
Tree: 744f0b4006
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '744f0b4006'
${ noResults }
windows-xp/Source/XPSP1/NT/ds/security/protocols/kerberos/exts/kerbexts.cxx

856 lines
24 KiB
Raw Normal View History

Add source files
4 years ago
  1. //+-----------------------------------------------------------------------
  2. //
  3. // Microsoft Windows
  4. //
  5. // Copyright (c) Microsoft Corporation 1991 - 1992
  6. //
  7. // File:
  8. //
  9. // Contents:
  10. //
  11. //
  12. // History:
  13. //
  14. //------------------------------------------------------------------------
  17. extern "C"
  18. {
  19. #include <nt.h>
  20. #include <ntrtl.h>
  21. #include <nturtl.h>
  22. #include <windows.h>
  23. }
  24. #include <stdio.h>
  26. #include <ntsdexts.h>
  28. #include <dsysdbg.h>
  29. #define SECURITY_PACKAGE
  30. #define SECURITY_WIN32
  31. #include <security.h>
  32. #include <kerberos.h>
  33. #include <secint.h>
  34. #include <cryptdll.h>
  36. #include <..\client2\kerb.hxx>
  37. #include <..\client2\kerbp.h>
  39. typedef struct _KDC_DOMAIN_INFO {
  40. LIST_ENTRY Next;
  41. UNICODE_STRING DnsName;
  42. UNICODE_STRING NetbiosName;
  43. struct _KDC_DOMAIN_INFO * ClosestRoute; // Points to referral target
  44. ULONG Flags;
  45. ULONG Attributes;
  46. ULONG Type;
  47. LONG References;
  49. //
  50. // Types used during building the tree
  51. //
  53. struct _KDC_DOMAIN_INFO * Parent;
  54. ULONG Touched;
  55. } KDC_DOMAIN_INFO, *PKDC_DOMAIN_INFO;
  57. #define AllocHeap(x) RtlAllocateHeap(RtlProcessHeap(), HEAP_ZERO_MEMORY, x)
  58. #define FreeHeap(x) RtlFreeHeap(RtlProcessHeap(), 0, x)
  60. PNTSD_EXTENSION_APIS pExtApis;
  61. HANDLE hDbgThread;
  62. HANDLE hDbgProcess;
  64. #define DebuggerOut (pExtApis->lpOutputRoutine)
  65. #define GetExpr (PVOID) (pExtApis->lpGetExpressionRoutine)
  66. #define InitDebugHelp(hProc,hThd,pApis) {hDbgProcess = hProc; hDbgThread = hThd; pExtApis = pApis;}
  68. char * ContextState[] = {
  69. "IdleState",
  70. "TgtRequestSentState",
  71. "TgtReplySentState",
  72. "ApRequestSentState",
  73. "ApReplySentState",
  74. "AuthenticatedState",
  75. "ErrorMessageSentState",
  76. "InvalidState"};
  78. void PrintContextAttributes( ULONG Attributes)
  79. {
  80. DebuggerOut(" ContextAttributes\t0x%lx:", Attributes);
  81. if (Attributes & KERB_CONTEXT_MAPPED)
  82. {
  83. DebuggerOut(" KERB_CONTEXT_MAPPED");
  84. }
  85. if (Attributes & KERB_CONTEXT_OUTBOUND)
  86. {
  87. DebuggerOut(" KERB_CONTEXT_OUTBOUND");
  88. }
  89. if (Attributes & KERB_CONTEXT_INBOUND)
  90. {
  91. DebuggerOut(" KERB_CONTEXT_INBOUND");
  92. }
  93. if (Attributes & KERB_CONTEXT_USED_SUPPLIED_CREDS)
  94. {
  95. DebuggerOut(" KERB_CONTEXT_USED_SUPPLIED_CREDS");
  96. }
  97. if (Attributes & KERB_CONTEXT_USER_TO_USER)
  98. {
  99. DebuggerOut(" KERB_CONTEXT_USER_TO_USER");
  100. }
  101. if (Attributes & KERB_CONTEXT_REQ_SERVER_NAME)
  102. {
  103. DebuggerOut(" KERB_CONTEXT_REQ_SERVER_NAME");
  104. }
  105. if (Attributes & KERB_CONTEXT_REQ_SERVER_REALM)
  106. {
  107. DebuggerOut(" KERB_CONTEXT_REQ_SERVER_REALM");
  108. }
  109. if (Attributes & KERB_CONTEXT_IMPORTED)
  110. {
  111. DebuggerOut(" KERB_CONTEXT_IMPORTED");
  112. }
  113. if (Attributes & KERB_CONTEXT_EXPORTED)
  114. {
  115. DebuggerOut(" KERB_CONTEXT_EXPORTED");
  116. }
  117. DebuggerOut("\n");
  118. }
  119. void PrintContextFlags ( ULONG Flags)
  120. {
  121. DebuggerOut(" ContextFlags for 0x%lx are:\n", Flags);
  122. if (Flags & 0x00000001)
  123. {
  124. DebuggerOut("\tISC(ASC)_REQ(RET)_DELEGATE\n");
  125. }
  126. if (Flags & 0x00000002)
  127. {
  128. DebuggerOut("\tISC(ASC)_REQ(RET)_MUTUAL_AUTH\n");
  129. }
  130. if (Flags & 0x00000004)
  131. {
  132. DebuggerOut("\tISC(ASC)_REQ(RET)_REPLAY_DETECT\n");
  133. }
  134. if (Flags & 0x00000008)
  135. {
  136. DebuggerOut("\tISC(ASC)_REQ(RET)_SEQUENCE_DETECT\n");
  137. }
  138. if (Flags & 0x00000010)
  139. {
  140. DebuggerOut("\tISC(ASC)_REQ(RET)_CONFIDENTIALITY\n");
  141. }
  142. if (Flags & 0x00000020)
  143. {
  144. DebuggerOut("\tISC(ASC)_REQ(RET)_USE_SESSION_KEY\n");
  145. }
  146. if (Flags & 0x00000040)
  147. {
  148. DebuggerOut("\tISC_REQ_PROMPT_FOR_CREDS or ISC_RET_USED_COLLECTED_CREDS\n");
  149. }
  150. if (Flags & 0x00000080)
  151. {
  152. DebuggerOut("\tISC_REQ_USE_SUPPLIED_CREDS or ISC_RET_USED_SUPPLIED_CREDS\n");
  153. }
  154. if (Flags & 0x00000100)
  155. {
  156. DebuggerOut("\tISC(ASC)_REQ_ALLOCATE_MEMORY or ISC(ASC)_RET_ALLOCATED_MEMORY\n");
  157. }
  158. if (Flags & 0x00000200)
  159. {
  160. DebuggerOut("\tISC(ASC)_REQ_USE_DCE_STYLE or ISC(ASC)_RET_USED_DCE_STYLE\n");
  161. }
  162. if (Flags & 0x00000400)
  163. {
  164. DebuggerOut("\tISC(ASC)_REQ(RET)_DATAGRAM\n");
  165. }
  166. if (Flags & 0x00000800)
  167. {
  168. DebuggerOut("\tISC(ASC)_REQ(RET)_CONNECTION\n");
  169. }
  170. if (Flags & 0x00001000)
  171. {
  172. DebuggerOut("\tISC(ASC)_REQ_CALL_LEVEL or ISC_RET_INTERMEDIATE_RETURN\n");
  173. }
  174. if (Flags & 0x00002000)
  175. {
  176. DebuggerOut("\tISC(ASC)_RET_CALL_LEVEL\n");
  177. }
  178. if (Flags & 0x00004000)
  179. {
  180. DebuggerOut("\tISC_REQ(RET)_EXTENDED_ERROR or ASC_RET_THIRD_LEG_FAILED\n");
  181. }
  182. if (Flags & 0x00008000)
  183. {
  184. DebuggerOut("\tISC_REQ(RET)_STREAM or ASC_REQ(RET)_EXTENDED_ERROR\n");
  185. }
  186. if (Flags & 0x00010000)
  187. {
  188. DebuggerOut("\tISC_REQ(RET)_INTEGRITY or ASC_REQ(RET)_STREAM\n");
  189. }
  190. if (Flags & 0x00020000)
  191. {
  192. DebuggerOut("\tISC_REQ(RET)_IDENTIFY or ASC_REQ(RET)_INTEGRITY\n");
  193. }
  194. if (Flags & 0x00040000)
  195. {
  196. DebuggerOut("\tISC_REQ(RET)_NULL_SESSION or ASC_REQ(RET)_LICENSING\n");
  197. }
  198. if (Flags & 0x00080000)
  199. {
  200. DebuggerOut("\tISC_REQ(RET)_MANUAL_CRED_VALIDATION or ASC_REQ(RET)_IDENTIFY\n");
  201. }
  202. if (Flags & 0x00100000)
  203. {
  204. DebuggerOut("\tISC_REQ(RET)_DELEGATE_IF_SAFE or ASC_REQ_ALLOW_NULL_SESSION or ASC_RET_NULL_SESSION\n");
  205. }
  206. if (Flags & 0x00200000)
  207. {
  208. DebuggerOut("\tASC_REQ(RET)_ALLOW_NON_USER_LOGONS\n");
  209. }
  210. if (Flags & 0x00400000)
  211. {
  212. DebuggerOut("\tASC_REQ(RET)_ALLOW_CONTEXT_REPLAY\n");
  213. }
  214. }
  215. SECURITY_STATUS
  216. ReadMemory( PVOID pvAddress,
  217. ULONG cbMemory,
  218. PVOID pvLocalMemory)
  219. {
  220. SIZE_T cbActual = cbMemory;
  222. if (ReadProcessMemory(hDbgProcess, pvAddress, pvLocalMemory, cbMemory, &cbActual))
  223. {
  224. if (cbActual != cbMemory)
  225. {
  226. DebuggerOut(" counts don't match\n");
  227. return(-1);
  228. }
  229. return(0);
  230. }
  231. DebuggerOut(" GetLastError from readMemory is %d\n", GetLastError());
  232. return(GetLastError());
  234. }
  236. SECURITY_STATUS
  237. WriteMemory(PVOID pvLocalMemory,
  238. ULONG cbMemory,
  239. PVOID pvAddress)
  240. {
  241. SIZE_T cbActual = cbMemory;
  243. if (WriteProcessMemory(hDbgProcess, pvAddress, pvLocalMemory, cbMemory, &cbActual))
  244. {
  245. if (cbActual != cbMemory)
  246. {
  247. return(-1);
  248. }
  249. return(0);
  250. }
  251. return(GetLastError());
  252. }
  254. DWORD
  255. GetDword(PVOID pvMemory)
  256. {
  257. DWORD dwVal;
  258. SIZE_T cbActual = sizeof(DWORD);
  260. if (ReadProcessMemory(hDbgProcess, pvMemory, &dwVal, sizeof(DWORD), &cbActual))
  261. {
  262. if (cbActual != sizeof(DWORD))
  263. {
  264. return((DWORD) -1);
  265. }
  266. return(dwVal);
  267. }
  268. return((DWORD) -1);
  269. }
  271. #define TIMEBUF_SZ 64
  272. char *Months[] = { "", "Jan", "Feb", "Mar", "Apr", "May", "Jun", "Jul",
  273. "Aug", "Sep", "Oct", "Nov", "Dec" };
  274. void CTimeStamp(PTimeStamp ptsTime,
  275. LPSTR pszTimeBuf)
  276. {
  277. SYSTEMTIME stTime;
  278. FILETIME tLocal;
  279. SYSTEMTIME stLocal;
  281. if (ptsTime->HighPart == 0)
  282. {
  283. strcpy(pszTimeBuf, "<Zero>");
  284. }
  285. else if (ptsTime->HighPart >= 0x7FFFFFFF)
  286. {
  287. strcpy(pszTimeBuf, "<Never>");
  288. }
  289. FileTimeToLocalFileTime((LPFILETIME) ptsTime, &tLocal);
  290. FileTimeToSystemTime((LPFILETIME) ptsTime, &stTime);
  291. FileTimeToSystemTime(&tLocal, &stLocal);
  292. sprintf(pszTimeBuf, "%02d:%02d:%02d.%03d, %s %02d, %d UTC (%02d:%02d:%02d.%03d, %s %02d, %d Local)", stTime.wHour,
  293. stTime.wMinute, stTime.wSecond, stTime.wMilliseconds,
  294. Months[stTime.wMonth], stTime.wDay, stTime.wYear,
  295. stLocal.wHour, stLocal.wMinute, stLocal.wSecond, stLocal.wMilliseconds, Months[stLocal.wMonth], stLocal.wDay, stLocal.wYear);
  296. }
  298. void ContextTimeStamp(PTimeStamp ptsTime,
  299. LPSTR pszTimeBuf)
  300. {
  301. // We set local times in sspi
  302. SYSTEMTIME stTime;
  303. FILETIME tutc;
  304. SYSTEMTIME stLocal;
  305. TimeStamp Time;
  307. if (ReadMemory( ptsTime, sizeof( TimeStamp), &Time))
  308. {
  309. DebuggerOut(" Could not read context\n");
  310. return;
  311. }
  312. if (Time.HighPart == 0)
  313. {
  314. strcpy(pszTimeBuf, "<Zero>");
  315. }
  316. else if (Time.HighPart >= 0x7FFFFFFF)
  317. {
  318. strcpy(pszTimeBuf, "<Never>");
  319. }
  320. FileTimeToSystemTime((LPFILETIME) &Time, &stLocal);
  321. LocalFileTimeToFileTime((LPFILETIME) &Time, &tutc);
  322. FileTimeToSystemTime(&tutc, &stTime);
  323. sprintf(pszTimeBuf, "%02d:%02d:%02d.%03d, %s %02d, %d UTC (%02d:%02d:%02d.%03d, %s %02d, %d Local)", stTime.wHour,
  324. stTime.wMinute, stTime.wSecond, stTime.wMilliseconds,
  325. Months[stTime.wMonth], stTime.wDay, stTime.wYear,
  326. stLocal.wHour, stLocal.wMinute, stLocal.wSecond, stLocal.wMilliseconds, Months[stLocal.wMonth], stLocal.wDay, stLocal.wYear);
  327. }
  329. void
  330. MapString(PSECURITY_STRING pClientString,
  331. PSECURITY_STRING pLocalString)
  332. {
  333. if (!pLocalString->Buffer)
  334. {
  335. pLocalString->Buffer = (PWSTR) AllocHeap(pClientString->Length + 2);
  336. if (pLocalString->Buffer == NULL)
  337. {
  338. return;
  339. }
  340. pLocalString->MaximumLength = pClientString->Length + 2;
  341. }
  343. RtlZeroMemory(pLocalString->Buffer, pLocalString->MaximumLength);
  345. if (!ReadMemory(pClientString->Buffer, pClientString->Length, pLocalString->Buffer))
  346. {
  347. pLocalString->Length = pClientString->Length;
  348. }
  349. else
  350. {
  351. DebuggerOut("\nWarning: could not read string @%x\n", pClientString->Buffer);
  352. }
  354. }
  356. void PrintSid(PVOID pvSid)
  357. {
  358. SID Sid;
  359. PSID pSid;
  360. UNICODE_STRING ucsSid;
  362. DebuggerOut(" UserSid \t0x%lx ", pvSid);
  363. if (pvSid)
  364. {
  365. if (ReadMemory(pvSid, sizeof(SID), &Sid))
  366. {
  367. DebuggerOut("Could not read from %x\n", pvSid);
  368. }
  370. pSid = AllocHeap(RtlLengthRequiredSid(Sid.SubAuthorityCount));
  371. if (pSid == NULL)
  372. {
  373. return;
  374. }
  375. if (ReadMemory(pvSid, RtlLengthRequiredSid(Sid.SubAuthorityCount), pSid))
  376. {
  377. DebuggerOut("Could not read from %x\n", pvSid);
  378. }
  380. RtlConvertSidToUnicodeString(&ucsSid, pSid, TRUE);
  381. DebuggerOut(" %wZ", &ucsSid);
  382. RtlFreeUnicodeString(&ucsSid);
  383. FreeHeap(pSid);
  384. }
  385. DebuggerOut("\n");
  386. }
  388. VOID
  389. PrintEType(
  390. ULONG EType
  391. )
  392. {
  393. switch(EType)
  394. {
  395. case KERB_ETYPE_NULL:
  396. DebuggerOut("KERB_ETYPE_NULL\n"); break;
  397. case KERB_ETYPE_DES_CBC_CRC:
  398. DebuggerOut("KERB_ETYPE_DES_CBC_CRC\n"); break;
  399. case KERB_ETYPE_DES_CBC_MD4:
  400. DebuggerOut("KERB_ETYPE_DES_CBC_MD4\n"); break;
  401. case KERB_ETYPE_DES_CBC_MD5:
  402. DebuggerOut("KERB_ETYPE_DES_CBC_MD5\n"); break;
  403. case KERB_ETYPE_OLD_RC4_MD4:
  404. DebuggerOut("KERB_ETYPE_OLD_RC4_MD4\n"); break;
  405. case KERB_ETYPE_OLD_RC4_PLAIN:
  406. DebuggerOut("KERB_ETYPE_OLD_RC4_PLAIN\n"); break;
  407. case KERB_ETYPE_OLD_RC4_LM:
  408. DebuggerOut("KERB_ETYPE_OLD_RC4_LM\n"); break;
  409. case KERB_ETYPE_OLD_RC4_SHA:
  410. DebuggerOut("KERB_ETYPE_OLD_RC4_SHA\n"); break;
  411. case KERB_ETYPE_OLD_DES_PLAIN:
  412. DebuggerOut("KERB_ETYPE_OLD_DES_PLAIN\n"); break;
  413. case KERB_ETYPE_RC4_MD4:
  414. DebuggerOut("KERB_ETYPE_RC4_MD4\n"); break;
  415. case KERB_ETYPE_RC4_PLAIN2:
  416. DebuggerOut("KERB_ETYPE_RC4_PLAIN2\n"); break;
  417. case KERB_ETYPE_RC4_LM:
  418. DebuggerOut("KERB_ETYPE_RC4_LM\n"); break;
  419. case KERB_ETYPE_RC4_SHA:
  420. DebuggerOut("KERB_ETYPE_RC4_SHA\n"); break;
  421. case KERB_ETYPE_DES_PLAIN:
  422. DebuggerOut("KERB_ETYPE_DES_PLAIN\n"); break;
  423. case KERB_ETYPE_RC4_PLAIN:
  424. DebuggerOut("KERB_ETYPE_RC4_PLAIN\n"); break;
  425. case KERB_ETYPE_RC4_HMAC_OLD:
  426. DebuggerOut("KERB_ETYPE_RC4_HMAC_OLD\n"); break;
  427. case KERB_ETYPE_RC4_HMAC_OLD_EXP:
  428. DebuggerOut("KERB_ETYPE_RC4_HMAC_OLD_EXP\n"); break;
  429. case KERB_ETYPE_RC4_PLAIN_EXP:
  430. DebuggerOut("KERB_ETYPE_RC4_PLAIN_EXP\n"); break;
  431. case KERB_ETYPE_DSA_SIGN:
  432. DebuggerOut("KERB_ETYPE_DSA_SIGN\n"); break;
  433. case KERB_ETYPE_RSA_PRIV:
  434. DebuggerOut("KERB_ETYPE_RSA_PRIV\n"); break;
  435. case KERB_ETYPE_RSA_PUB:
  436. DebuggerOut("KERB_ETYPE_RSA_PUB\n"); break;
  437. case KERB_ETYPE_RSA_PUB_MD5:
  438. DebuggerOut("KERB_ETYPE_RSA_PUB_MD5\n"); break;
  439. case KERB_ETYPE_RSA_PUB_SHA1:
  440. DebuggerOut("KERB_ETYPE_RSA_PUB_SHA1\n"); break;
  441. case KERB_ETYPE_PKCS7_PUB:
  442. DebuggerOut("KERB_ETYPE_PKCS7_PUB\n"); break;
  443. case KERB_ETYPE_DES_CBC_MD5_NT:
  444. DebuggerOut("KERB_ETYPE_DES_CBC_MD5_NT\n"); break;
  445. default:
  446. DebuggerOut("Unknown EType: 0x%lx\n", EType); break;
  447. }
  448. }
  449. VOID
  450. ShowKerbContext(
  451. IN PVOID pContext
  452. )
  453. {
  454. KERB_CONTEXT Context;
  455. CHAR TimeBuf[80];
  456. SECURITY_STRING sLocal;
  457. sLocal.Buffer = NULL;
  459. if (ReadMemory( pContext, sizeof( KERB_CONTEXT), &Context ))
  460. {
  461. DebuggerOut(" Could not read context\n");
  462. return;
  463. }
  465. CTimeStamp( &Context.Lifetime, TimeBuf );
  466. DebuggerOut(" Lifetime \t%s\n", TimeBuf );
  468. CTimeStamp( &Context.RenewTime, TimeBuf );
  469. DebuggerOut(" RenewTime \t%s\n", TimeBuf );
  471. MapString( &Context.ClientName, &sLocal);
  472. DebuggerOut(" ClientName \t%ws\n", sLocal.Buffer);
  473. FreeHeap(sLocal.Buffer);
  474. sLocal.Buffer = NULL;
  476. MapString( &Context.ClientRealm, &sLocal);
  477. DebuggerOut(" ClientRealm \t%ws\n", sLocal.Buffer);
  478. FreeHeap(sLocal.Buffer);
  479. sLocal.Buffer = NULL;
  481. DebuggerOut(" Process ID \t0x%lx\n", Context.ClientProcess);
  482. DebuggerOut(" LogonId \t0x%lx : 0x%lx\n", Context.LogonId.LowPart, Context.LogonId.HighPart );
  483. DebuggerOut(" TokenHandle \t0x%lx\n", Context.TokenHandle );
  484. DebuggerOut(" CredentialHandle\t0x%lx\n", Context.CredentialHandle);
  485. DebuggerOut(" SessionKey type \t");
  486. PrintEType(Context.SessionKey.keytype);
  487. DebuggerOut(" SessionKey length \t0x%lx\n", Context.SessionKey.keyvalue.length);
  488. DebuggerOut(" Nonce \t0x%lx\n", Context.Nonce);
  489. DebuggerOut(" ReceiveNonce \t0x%lx\n", Context.ReceiveNonce);
  490. DebuggerOut(" ContextFlags \t0x%lx\n", Context.ContextFlags);
  491. PrintContextAttributes(Context.ContextAttributes);
  492. DebuggerOut(" EncryptionType \t");
  493. PrintEType(Context.EncryptionType);
  494. PrintSid(Context.UserSid);
  495. DebuggerOut(" ContextState \t%s\n", ContextState[Context.ContextState]);
  496. DebuggerOut(" Retries \t0x%lx\n", Context.Retries );
  497. DebuggerOut(" TicketKey type \t");
  498. PrintEType(Context.TicketKey.keytype);
  499. DebuggerOut(" TicketKey length\t0x%lx\n", Context.TicketKey.keyvalue.length);
  500. DebuggerOut(" TicketCacheEntry\t0x%lx\n", Context.TicketCacheEntry);
  501. }
  503. VOID
  504. DumpContext(
  505. HANDLE hProcess,
  506. HANDLE hThread,
  507. DWORD dwCurrentPc,
  508. PNTSD_EXTENSION_APIS lpExt,
  509. LPSTR pszCommand)
  510. {
  511. PVOID pContext;
  513. InitDebugHelp( hProcess,
  514. hThread,
  515. lpExt);
  517. pContext = GetExpr( pszCommand );
  519. if ( pContext == NULL ) {
  521. return;
  522. }
  524. ShowKerbContext( pContext );
  526. }
  528. void PrintLogonType(SECURITY_LOGON_TYPE LogonType)
  529. {
  530. switch(LogonType)
  531. {
  532. case Interactive:
  533. DebuggerOut("Interactive\n"); break;
  534. case Network:
  535. DebuggerOut("Network\n"); break;
  536. case Batch:
  537. DebuggerOut("Batch\n"); break;
  538. case Service:
  539. DebuggerOut("Service\n"); break;
  540. case Proxy:
  541. DebuggerOut("Proxy\n"); break;
  542. case Unlock:
  543. DebuggerOut("Unlock\n"); break;
  544. default:
  545. DebuggerOut("Unknown Logon Type: 0x%lx\n", LogonType); break;
  546. }
  547. }
  549. VOID
  550. ShowKerbTCacheEntry(PVOID pCache)
  551. {
  552. /*
  553. typedef struct _KERB_TICKET_CACHE_ENTRY {
  554. KERBEROS_LIST_ENTRY ListEntry;
  555. PKERB_INTERNAL_NAME ServiceName;
  556. PKERB_INTERNAL_NAME TargetName;
  557. UNICODE_STRING DomainName;
  558. UNICODE_STRING TargetDomainName;
  559. UNICODE_STRING AltTargetDomainName;
  560. PKERB_INTERNAL_NAME ClientName;
  561. ULONG TicketFlags;
  562. ULONG CacheFlags;
  563. KERB_ENCRYPTION_KEY SessionKey;
  564. TimeStamp KeyExpirationTime;
  565. TimeStamp StartTime;
  566. TimeStamp EndTime;
  567. TimeStamp RenewUntil;
  568. KERB_TICKET Ticket;
  569. TimeStamp TimeSkew;
  570. } KERB_TICKET_CACHE_ENTRY, *PKERB_TICKET_CACHE_ENTRY;
  571. */
  572. KERB_TICKET_CACHE_ENTRY Cache;
  573. CHAR TimeBuf[64];
  574. SECURITY_STRING sLocal;
  575. ULONG Temp;
  576. sLocal.Buffer = NULL;
  578. if (ReadMemory( pCache, sizeof( KERB_TICKET_CACHE_ENTRY), &Cache))
  579. {
  580. DebuggerOut(" Could not read ticket cache entry\n");
  581. return;
  582. }
  583. DebuggerOut(" ServiceName \t0x%lx\n", Cache.ServiceName);
  584. DebuggerOut(" TargetName \t0x%lx\n", Cache.TargetName);
  586. MapString( &Cache.DomainName, &sLocal);
  587. DebuggerOut(" DomainName \t%ws\n", sLocal.Buffer);
  588. FreeHeap(sLocal.Buffer);
  589. sLocal.Buffer = NULL;
  591. MapString( &Cache.TargetDomainName, &sLocal);
  592. DebuggerOut(" TargetDomainName \t%ws\n", sLocal.Buffer);
  593. FreeHeap(sLocal.Buffer);
  594. sLocal.Buffer = NULL;
  596. MapString( &Cache.AltTargetDomainName, &sLocal);
  597. DebuggerOut(" AltTargetDomainName \t%ws\n", sLocal.Buffer);
  598. FreeHeap(sLocal.Buffer);
  599. sLocal.Buffer = NULL;
  601. DebuggerOut(" ClientName \t0x%lx\n", Cache.ClientName);
  602. DebuggerOut(" TicketFlags \t0x%lx\n", Cache.TicketFlags);
  603. DebuggerOut(" CacheFlags \t0x%lx\n", Cache.CacheFlags);
  604. DebuggerOut(" EncryptionType \t");
  605. PrintEType(Cache.SessionKey.keytype);
  606. CTimeStamp( &Cache.KeyExpirationTime, TimeBuf );
  607. DebuggerOut(" KeyExpirationTime \t%s\n", TimeBuf );
  608. CTimeStamp( &Cache.StartTime, TimeBuf );
  609. DebuggerOut(" StartTime \t%s\n", TimeBuf );
  610. CTimeStamp( &Cache.EndTime, TimeBuf );
  611. DebuggerOut(" Endtime \t%s\n", TimeBuf );
  612. CTimeStamp( &Cache.RenewUntil, TimeBuf );
  613. DebuggerOut(" RenewUntil \t%s\n", TimeBuf );
  614. }
  616. VOID
  617. ShowKerbLSession(
  618. IN PVOID pSession
  619. )
  620. {
  621. KERB_LOGON_SESSION Session;
  622. CHAR TimeBuf[64];
  623. SECURITY_STRING sLocal;
  624. ULONG_PTR Temp;
  625. sLocal.Buffer = NULL;
  627. if (ReadMemory( pSession, sizeof( KERB_LOGON_SESSION), &Session))
  628. {
  629. DebuggerOut(" Could not read logon session\n");
  630. return;
  631. }
  632. //DebuggerOut(" Credential \t0x%lx\n", Session.SspCredentials);
  633. DebuggerOut(" LogonId \t0x%lx : 0x%lx\n", Session.LogonId.LowPart, Session.LogonId.HighPart );
  634. CTimeStamp( &Session.Lifetime, TimeBuf );
  635. DebuggerOut(" Lifetime \t%s\n", TimeBuf );
  636. //PrintPCred(Session.PrimaryCredentials);
  638. MapString( &Session.PrimaryCredentials.UserName, &sLocal);
  639. DebuggerOut(" UserName \t%ws\n", sLocal.Buffer);
  640. FreeHeap(sLocal.Buffer);
  641. sLocal.Buffer = NULL;
  643. MapString( &Session.PrimaryCredentials.DomainName, &sLocal);
  644. DebuggerOut(" DomainName \t%ws\n", sLocal.Buffer);
  645. FreeHeap(sLocal.Buffer);
  646. sLocal.Buffer = NULL;
  648. DebuggerOut(" Passwords \t0x%lx\n", Session.PrimaryCredentials.Passwords);
  649. DebuggerOut(" OldPasswords \t0x%lx\n", Session.PrimaryCredentials.OldPasswords);
  650. DebuggerOut(" PublicKeyCreds \t0x%lx\n", Session.PrimaryCredentials.PublicKeyCreds);
  651. DebuggerOut(" LogonSessionFlags\t0x%lx\n", Session.LogonSessionFlags);
  653. // ServerTicketCache
  654. Temp = (ULONG_PTR)pSession+ FIELD_OFFSET(KERB_LOGON_SESSION, PrimaryCredentials) + FIELD_OFFSET(KERB_PRIMARY_CREDENTIAL, ServerTicketCache);
  656. DebuggerOut(" ServerTicketCache \t0x%p\n", Temp);
  658. // AuthenticationTicketCache
  659. Temp = (ULONG_PTR)pSession+ FIELD_OFFSET(KERB_LOGON_SESSION, PrimaryCredentials) + FIELD_OFFSET(KERB_PRIMARY_CREDENTIAL, AuthenticationTicketCache);
  661. DebuggerOut(" AuthenticationTicketCache \t0x%p\n", Temp );
  664. }
  666. VOID
  667. DumpLSession(
  668. HANDLE hProcess,
  669. HANDLE hThread,
  670. DWORD dwCurrentPc,
  671. PNTSD_EXTENSION_APIS lpExt,
  672. LPSTR pszCommand)
  673. {
  674. PVOID pSession;
  676. InitDebugHelp( hProcess,
  677. hThread,
  678. lpExt);
  680. pSession = GetExpr( pszCommand );
  682. if ( pSession == NULL ) {
  684. return;
  685. }
  687. ShowKerbLSession( pSession);
  689. }
  691. VOID
  692. DumpTCacheEntry(
  693. HANDLE hProcess,
  694. HANDLE hThread,
  695. DWORD dwCurrentPc,
  696. PNTSD_EXTENSION_APIS lpExt,
  697. LPSTR pszCommand)
  698. {
  699. PVOID pCache;
  701. InitDebugHelp( hProcess,
  702. hThread,
  703. lpExt);
  705. pCache = GetExpr( pszCommand );
  707. if ( pCache == NULL ) {
  709. return;
  710. }
  712. ShowKerbTCacheEntry( pCache);
  713. }
  715. /*
  716. VOID
  717. ShowDomainList(PVOID pDomain)
  718. {
  719. PLIST_ENTRY DomainList = (PLIST_ENTRY) pDomain;
  720. SECURITY_STRING sLocal;
  721. PLIST_ENTRY ListEntry;
  722. PKDC_DOMAIN_INFO Domain;
  725. for (ListEntry = DomainList->Flink;
  726. ListEntry != DomainList ;
  727. ListEntry = ListEntry->Flink )
  728. {
  729. Domain = (PKDC_DOMAIN_INFO) CONTAINING_RECORD(ListEntry, KDC_DOMAIN_INFO, Next);
  731. MapString( &Domain->DnsName, &sLocal);
  732. DebuggerOut(" DomainName \t%ws\n", sLocal.Buffer);
  733. FreeHeap(sLocal.Buffer);
  734. sLocal.Buffer = NULL;
  736. if (Domain->ClosestRoute == NULL)
  737. {
  738. DebuggerOut(" No closest route\n");
  739. }
  740. else
  741. {
  742. MapString( Domain->ClosestRoute, &sLocal);
  743. DebuggerOut(" Closest Route \t%ws\n", sLocal.Buffer);
  744. FreeHeap(sLocal.Buffer);
  745. sLocal.Buffer = NULL;
  746. }
  748. if (Domain->Parent == NULL)
  749. {
  750. DebuggerOut(" No parent\n");
  751. }
  752. else
  753. {
  754. MapString( &Domain->Parent->DnsName, &sLocal);
  755. DebuggerOut(" Parent \t%ws\n", sLocal.Buffer);
  756. FreeHeap(sLocal.Buffer);
  757. sLocal.Buffer = NULL;
  758. }
  759. }
  760. }
  762. VOID
  763. DumpReferralTree(
  764. HANDLE hProcess,
  765. HANDLE hThread,
  766. DWORD dwCurrentPc,
  767. PNTSD_EXTENSION_APIS lpExt,
  768. LPSTR pszCommand)
  769. {
  770. PVOID pDomain;
  772. InitDebugHelp( hProcess,
  773. hThread,
  774. lpExt);
  776. pDomain = GetExpr( pszCommand );
  778. if ( pDomain == NULL ) {
  780. return;
  781. }
  782. ShowDomainList(pDomain);
  783. }
  784. */
  786. VOID
  787. DumpContextFlags(
  788. HANDLE hProcess,
  789. HANDLE hThread,
  790. DWORD dwCurrentPc,
  791. PNTSD_EXTENSION_APIS lpExt,
  792. LPSTR pszCommand)
  793. {
  794. PVOID pContext;
  796. InitDebugHelp( hProcess,
  797. hThread,
  798. lpExt);
  800. pContext = GetExpr( pszCommand );
  802. if ( pContext == NULL ) {
  804. return;
  805. }
  807. PrintContextFlags( (ULONG)((ULONG_PTR)pContext) );
  809. }
  811. VOID
  812. DumpCTimeStamp(
  813. HANDLE hProcess,
  814. HANDLE hThread,
  815. DWORD dwCurrentPc,
  816. PNTSD_EXTENSION_APIS lpExt,
  817. LPSTR pszCommand)
  818. {
  819. PVOID pContext;
  820. CHAR TimeBuf[100];
  822. InitDebugHelp( hProcess,
  823. hThread,
  824. lpExt);
  826. pContext = GetExpr( pszCommand );
  828. if ( pContext == NULL ) {
  830. return;
  831. }
  833. ContextTimeStamp( (PTimeStamp) pContext, TimeBuf );
  834. DebuggerOut(" TimeStamp \t%s\n", TimeBuf );
  836. }
  838. void
  839. Help( HANDLE hProcess,
  840. HANDLE hThread,
  841. DWORD dwCurrentPc,
  842. PNTSD_EXTENSION_APIS lpExt,
  843. LPSTR pszCommand)
  844. {
  846. InitDebugHelp(hProcess, hThread, lpExt);
  848. DebuggerOut("Kerberos Exts Debug Help\n");
  849. DebuggerOut(" DumpContext <addr> \tDumps a Kerberos context\n");
  850. DebuggerOut(" DumpLSession <addr> \tDumps a Kerberos logon session\n");
  851. DebuggerOut(" DumpTCacheEntry <addr> \tDumps a Kerberos ticket cache entry\n");
  852. DebuggerOut(" DumpContextFlags <hex ulong>\tDumps an SSPI context flags\n");
  853. DebuggerOut(" DumpCTimeStamp <hex ulong>\tDumps a Context Expiry Time\n");
  855. }